Application Insight Web Application Firewall

AIWAF
Application Insight Web Application Firewall
Web Application and API Protection

MONITORAPP AIWAF is a Web Application Firewall protecting against the most prevalent web application and API attacks. Built on the world's leading
high-performance proxy engine, it inspects all request/response traffic to web and API servers, ensuring protection of customer assets from web attacks,
such as OWASP TOP ��, OWASP API TOP ��, and abnormal traffic, including L� DDoS and malicious bots.

Service lineup

AIWAF Physical Appliance

On-premise physical hardware-based Web Application and API Protection.

AIWAF-VE Virtual Appliance

Virtual Web Application and API Protection for both private and public cloud environments.

[Link]
Why AIWAF

Web Application Security API Security

Constantly monitoring traffic to the web server, AIWAF maintains data integrity, confidentiality, and
AIWAF protects enterprise applications by not only availability through API Discovery, Authentication and
blocking attacks targeting web vulnerabilities, such Authorization, and API Traffic Inspection, thus safeguarding
as SQL injection, XSS, and CSRF, but also protecting critical APIs for businesses and organizations and ensuring
against zero-day exploits. secure communications with clients.

Bot Mitigation L� DDoS Mitigation

Through various mechanisms, such as Device Distinguishing between legitimate and malicious traffic,
Fingerprint and Human Interaction, it identifies and AIWAF eliminates security threats without service
blocks malicious bot traffic, including unauthorized interruption, ensuring the continuity of the enterprise's
website crawling and automated script attacks. web services and applications.

Managed Center for WAF

ʻAIMC for WAF’ enables integrated management of
both on-premises AIWAF and cloud-based AIWAF-VE
solutions through a single interface.
It allows real-time monitoring of distributed solutions
across various locations and centralizes policy
configuration and updates to maximize operational
efficiency.

Intelligent Web Application Firewall

Key Features

Various network configuration modes ML/AI based engine

· In-line : Full Transparent Proxy · Receives real-time threat updates through AILabs.
· Out-of-path : Reverse Proxy, Mirroring · Machine learning-driven detection of unidentified attacks.

Comprehensive web application security Traffic optimization

· OWASP Top �� Vulnerability Detection. · Monitors web service quality and optimizes performance using server load balancing.
· Offers comprehensive protection against web application threats, · Implements domain-specific Quality of Service settings.
including SQL injection and XSS, by leveraging various detection algorithms. · Manages URL rewriting for both inbound and outbound traffic.

API security Security optimization

· API OWASP Top �� Vulnerability Detection. · Minimize security holes through various exception handling conditions
· Protects business APIs through API Discovery, Authentication and such as headers, URLs, and IP addresses.
Authorization, and API Traffic Inspection. · Manage detection and blocking by security policy.
· Prevent security errors through proactive policy validation.

Bot mitigation · Real-time detection and blocking of malware within web pages.

· Detects malicious bot traffic, such as Credential Cracking, Credential

Customizable policy setting
Stuffing, Scraping, and Denial of Inventory.
· Manages user-defined rules based on various HTTP components, such as
URL, Method, Header, Cookie, Query, Payload, etc.
L� DDoS mitigation
· Real-time detection and blocking of DDoS traffic occurring Pattern update
at the application layer (HTTP/HTTPS).
· Performs monthly routine pattern updates.
· Provides real-time updates to address emergency vulnerabilities.

*If you need more detailed feature information about AIWAF, please contact sales@[Link].

[Link]
Deployment
Full Transparent Proxy Reverse Proxy Mirroring
L�/TAP Switch
Proxy

Internet Web server

Internet Web server Internet Web server

· No need for network configuration changes. · Broad protection for distributed servers. · Using the mirroring function of TAP or L� switch
· Bypass in case of failure. · Traffic flows into AIWAF through network route · No network impact in case of a malfunction.
· Support multi-segment and processes async traffic. or DNS address change. · Service continuity through HA configuration or DNS Failover.
· Service continuity through HA configuration or DNS Failover.

Specifications
Model AIWAF-���_Y�� AIWAF-���_Y�� AIWAF-����_Y�� AIWAF-����_Y�� AIWAF-����_Y�� AIWAF-����_Y��

Appearance

Intel(R) Core™ i�-���� Intel(R) Xeon® E-����G Intel(R) Xeon(R) Silver Intel(R) Xeon(R) Silver Intel(R) Xeon(R) Gold Intel(R) Xeon(R) Platinum
CPU
�Core �.�GHz �core �.�GHz ���� �core �.�GHz * �ea ���� ��core �.�GHz * �ea ����T ��core �.�GHz * �ea ���� ��core �.�GHz * �ea

Memory �GB ��GB ��GB ��GB ��GB ��GB

CPS
��,��� / ��,��� ��,��� / ��,��� ���,��� / ��,��� ���,��� / ��,��� ���,��� / ��,��� ���,��� / ���,���
HTTP/HTTPS

TPS
��,��� / ��,��� ���,��� / ��,��� ���,��� / ���,��� ���,��� / ���,��� ���,��� / ���,��� ���,��� / ���,���
HTTP/HTTPS

Throughput
� Gbps / � Gbps � Gbps / � Gbps �� Gbps / � Gbps �� Gbps / � Gbps �� Gbps / � Gbps �� Gbps / �� Gbps
HTTP/HTTPS

- Model specifications are derived from AIWAF physical appliance's standard workload. Actual results may vary based on specific workload requirements.

Intelligent Web Application Firewall

AIWAF-VE
Application Insight Web Application Firewall-Virtual Edition
AIWAF optimized for cloud environment

AIWAF-VE is a web application firewall optimized for operation in both private and public cloud environments, providing the same level of
security functions as a physical appliance. With a variety of configuration options and automated features tailored for cloud environments,
it facilitates immediate web security, enabling security managers to focus on business-critical tasks.

AIWAF-VE Network Configuration

Reverse Proxy
· Configured in a location-independent Reverse Proxy mode, the VE
performs extensive protection for a distributed array of web servers.

· Network traffic is directed to AIWAF-VE through changes in network

paths or DNS records (A records, CNAME).

· Service continuity is ensured through HA (High Availability)

Client Internet CLOUD

configuration or DNS Failover mechanisms.

· Web server health check and load balancing.

Web server

[Link]
Support
Support for all private and public cloud environments

Private Cloud Public Cloud

Specifications
Model AIWAF-VE �� AIWAF-VE �� AIWAF-VE �� AIWAF-VE �� AIWAF-VE �� AIWAF-VE ��

CPU � Core � Core � Core �� Core �� Core �� Core

Memory �GB �GB �GB ��GB ��GB ��GB

HDD ���GB ���GB ���GB �TB �TB �TB

CPS/TPS �,��� / �,��� ��,��� / ��,��� ��,��� / ��,��� ��,��� / ���,��� ��,��� / ���,��� ���,��� / ���,���

Max Throughput ��� Mbps ��� Mbps � Gbps �.� Gbps � Gbps � Gbps

Recommended
��� Mbps ��� Mbps ��� Mbps �.� Gbps � Gbps � Gbps
Web Traffic

- Model specifications are derived from AIWAF virtual appliance's standard workload. Actual results may vary based on specific workload requirements.

Intelligent Web Application Firewall