Junos WebApp Secure

Junos WebApp Secure uses deception to make hacking costly, time consuming and tedious. The smartest way to secure websites and apps from hackers, fraud and theft.

Security

Junos WebApp Secure

MWS1000

Junos Spotlight Secure

Junos DDoS Secure

Need Help?

Overview
Features and Benefits
Literature
Ordering

The innovative Junos WebApp Secure is the first Web Intrusion Deception System that detects, tracks, profiles and prevents hackers in real-time.

Traditional web application firewalls are seriously flawed because their reliance on a library of signatures to detect attacks and makes them susceptible to unknown (zero day) web attacks.

Intrusion Deception

Junos WebApp Secure Software technology uses Intrusion Deception to address this problem. Unlike signature-based approaches Junos WebApp Secure inserts random, variable detection points, or tar traps, into the code of outbound Web application traffic to proactively identify attackers before they can do damage - without false positives.

	Detect using deception Junos WebApp Secure inserts detection points into web application code including urls, forms and server files to create a variable minefield. These traps detect hackers when they manipulate the detection points during the reconnaissance phase of the attack, before they can establish an attack vector. And because hackers are manipulating code that has nothing to do with the website or web application, the malicious action is certain.
	Track attackers beyond the IP address Junos WebApp Secure captures an attacker’s IP address as one data point for tracking. But many legitimate users could also be accessing the site from the same IP address—for this reason, Junos WebApp Secure goes beyond the IP address and tracks attackers more granularly. Attackers using a browser are tracked by injecting a persistent token into their client. Attackers using scripts and tools are tracked using a fingerprinting technique to identify the machine delivering the script.
	Understand attackers and record their attack The tracking techniques allow us to profile the attacker and record the attack. Every attacker is assigned a name and each incident is recorded along with a threat level based on their intent and skill.
	Respond to attackers Once an attack has been detected, an appropriate response—from a warning, to requiring a CAPTCHA, to blocking a user or forcing them to logout, can be deployed manually or automatically in real-time.

Easy Deployment

Junos WebApp Secure is a software and hardware product that sits logically inline and functions as a reverse proxy. Deployment is easy and protects web applications located in internal datacenters, virtualized environments and hosted in the cloud.

Junos WebApp Secure uses deception to make hacking costly, time consuming and tedious. The smartest way to secure websites and apps from hackers, fraud and theft.

Detection By Deception

Tar Traps Detect and Slow Down Attackers

Junos WebApp Secure detects attackers before the attack. By injecting hundreds of detection points into the code, the attackers own behavior identifies them as malicious - without false positives. The detection points create a very unreliable attack surface that the attacker cannot trust. If the attacker touches the wrong piece of code, they are detected.
Change The Economics of Hacking

Junos WebApp Secure breaks the automated tools that make hacking cheap and easy by inundating them with fake data and rendering the results useless. This forces hackers to use slow, manual and time consuming methods. Junos WebApp Secure then ensnares human attackers in a game of deceit, wasting their time and money while recording the attack.
Prevent Automated Attacks

Thousands of scanners are constantly scouring the Internet every day hitting your site in search of unpatched vulnerabilities. Worse, hackers also take advantage of botnets to instantly scale up an attack against your site. Junos WebApp Secure detects scanners and deceives them using fake data, and breaks botnet attacks with a CAPTCHA processor.
Zero Day Protection for Your Website

Early detection of attackers during the reconnaissance phase of an attack is what Junos WebApp Secure does best, and what no signature can possibly detect. When an attacker falls into one of our tar traps, they are identified and stopped before they ever launch the attack.
No False Positives

False positives are a disaster because they turn your defense into detection rather than prevention. False positives mean that you can only use your security device as a log-file to review after an attack rather than engage in real-time prevention. Providing only log files is like handing someone pictures of their house after it burned down – what they needed was a smoke alarm to warn them of an impending attack. Junos WebApp Secure is that smoke alarm for detecting attackers on your website before they do damage – with no false positives.

Track the Attacker and Record the Attack

Stop Attackers in their Tracks

Simple Management

Juniper Networks Secures Brown Printing Web Applications in Real Time

Download [

339 KB ]