News Releases

Trustwave Upgrades WebDefend® Web Application Firewall for Greater Functionality

Written by | Nov 19, 2010 5:17:00 AM

New Version 5.0 Features Enhanced Virtual Patching, Multi-Tenancy and Protection for Multi-Language Web Sites

CHICAGO (November 18, 2010) -   Trustwave, a leading provider of information security and compliance solutions, has unveiled a major upgrade to its WebDefend Web Application Firewall.

A Web application firewall (WAF) is a technology that provides protection for Web applications (such as an e-commerce site) against cyber attacks. Trustwave WebDefend provides Web applications with real-time, continuous security against attacks and data loss, ensures Web sites operate as intended and help businesses comply with industry regulations such as the Payment Card Industry Data Security Standard. WebDefend is in use today at businesses around the globe, protecting Web applications from attacks that could disrupt business and compromise sensitive data.

WebDefend's new internationalization capabilities can protect Web applications in any language, including double byte languages such as Japanese, Korean and Chinese. The recent upgrade to WebDefend also includes enhanced virtual patching and custom rule capabilities, including Web application scanner integration with multiple global providers. WebDefend now integrates with IBM AppScanTM and Cenzic HailstormTM with an easy workflow to build virtual patches based on scan results. Virtual patching protects vulnerable applications from attack, without having to wait for the next application release.

The upgrade also includes multi-tenancy features that enable multiple customers to be defined in a single appliance with secure separation that ensures customers cannot view each other's data. This new feature enables hosting providers and Managed Security Service Providers (MSSPs) to offer managed WAF services based on WebDefend.

"We are excited by the enhancements delivered with WebDefend 5.0. Trustwave has delivered a tool that reflects the maturing role of security within the enterprise by making collaboration among security, network operations, architecture, and Web development teams easier while keeping management apprised of the progress of security initiatives with robust, scheduled report development and delivery," said Brian Moore, security architect, Application and Data Security Honeywell Global Security, Honeywell International. "With WebDefend 5.0, Trustwave has acknowledged security's entry into real IT service management and by doing so, raises the level of security within the enterprise."

"These enhancements to WebDefend will help our global customers seamlessly secure their Web applications," said Robert J. McCullen, chairman and CEO of Trustwave. "WebDefend's new multi-tenant and multi-language capabilities will allow Trustwave to expand its adoption through our global network of channel partners and end users."

WebDefend can be purchased as a stand-alone product, or as a component of Trustwave's 360 Application Security program, which combines Secure Code Training, Application Penetration Testing, Code Review and Trustwave WebDefend with Virtual Patching into a holistic application security program. This solution is delivered by SpiderLabs, the advanced security team within Trustwave, bridging the gap between expert manual testing and automated protection found within many organizations. The PCI DSS has always required Web application security, either using a WAF or through application penetration testing. Trustwave's 360 Application Security program adheres to security best practices by bringing together both solutions to further secure the business.

About Trustwave

Trustwave is a leading provider of on-demand and subscription-based information security and payment card industry compliance management solutions to businesses and government entities throughout the world. For organizations faced with today's challenging data security and compliance environment, Trustwave provides a unique approach with comprehensive solutions that include its flagship TrustKeeper® compliance management software and other proprietary security solutions including SIEM , WAF , EV SSL certificates  and secure digital certificates . Trustwave has helped hundreds of thousands of organizations-ranging from Fortune 500 businesses and large financial institutions to small and medium-sized retailers-manage compliance and secure their network infrastructures, data communications and critical information assets. Trustwave is headquartered in Chicago with offices throughout North America, South America, Europe, Africa, Asia and Australia. For more information, visit https://www.trustwave.com/en-us/.