SlideShare uma empresa Scribd logo

Proteja suas aplicações com segurança F5

CYLK IT Solutions
CYLK IT Solutions

This document discusses the importance of application protection and the differences between traditional firewalls and application firewalls. It outlines some common attacks targeting applications like SQL injection, cross-site scripting, and parameter tampering. The F5 Networks application firewall protects applications from these threats using features like signatures for attacks and vulnerabilities, URL/parameter/cookie protection, and bot detection. It can be deployed in data centers, clouds, and as a managed service to secure all applications.

Tecnologia
1 de 19
Baixar para ler offline
Proteja suas Aplicações e esteja Seguro Vinicius Miranda, Sales Engineer WestconGroup, vinicius.miranda@westcon.com
© F5 Networks, Inc 2 • A Importância da Proteção para suas Aplicações; • Qual a Diferença entre o Firewall Tradicional e o Firewall de Aplicação? • Principais Ataques Direcionados para as Aplicações; • Como a F5 Networks ajuda na Proteção das suas Aplicações? • Duvidas; Agenda
A Importância da Proteção para as Aplicações
© F5 Networks, Inc 4 Business App Security Access Proteção da Aplicação é igual a Proteção do Negócio? Vazamento de Dados Roubo de Credencial Fraude US$ 81 Milhões 8.695 casos no Brasil entre 2014/2015 – PwC 16
© F5 Networks, Inc 5 Como comprovar essa realidade? Source: Akamai Report
Firewall Tradicional e Firewall de Aplicação, qual é a Diferença???
© F5 Networks, Inc 7 Vamos entender… “Next generation” Firewall Characteristics • Outbound USER inspection • Who is doing what? • “Trusted” users to Internet Corporate (users) Web Application Firewall Data center (servers) Characteristics • Inbound APPLICATION protection • Application delivery focus • “Untrusted” users to data center
© F5 Networks, Inc 8 Ok…mas qual é a diferença entre eles? Multiprotocol Security  IP Reputation   Web Attack Signatures  Web Vulnerabilities Signatures   Automatic Policy Learning  URL, Parameter, Cookie and Form Protection  Leverage Vulnerability Scan Results 
Principais Ataques Direcionados para as Aplicações
© F5 Networks, Inc 10 Roubo de Credencial, Vazamento de Dados, Aplicações Lentas… SQL Injection Cross-Site Scripting XSS Parameter Tampering
© F5 Networks, Inc 11 Vulnerabilidades nas Aplicações WEB… 7% 2014 40% 2016 Como estar protegido diante deste Cenário?
Como a F5 Networks pode ajudar?
© F5 Networks, Inc 13 The New Perimeter Is An App Perimeter Apps Are The Gateway to Data! F5 SS L SS L SS L APP PER-APP / PER-USER PERIMETER SSL-visible ✖ ✔ Location-independent ✖ ✔ Session-based ✖ ✔ Continuous trust verification ✖ ✔ Strategic control points ✖ ✔ App availability ✖ ✔ TRADITIONAL TRADITIONAL NETWORK PERIMETER App
© F5 Networks, Inc 14 Let’s talk about Web Application Firewall - WAF • A Web application firewall protects Web servers from malicious traffic and blocks attempts to compromise the system. • It prevents targeted attacks that include cross-site scripting, SQL injection, forceful browsing,cookie poisoning and invalid input. • The F5 BIG-IP® Application Security Manager is a Web application firewall that uses both positive and negative security models to identify, isolate and block sophisticated attacks without impacting legitimate application transactions. ASM
© F5 Networks, Inc 15 The Value Of F5 Hybrid WAF Protection Secure response delivered Request made BIG-IP ASM security policy checked Server response generated Vulnerable application • Drop, block or forward request • Application attack filtering & inspection • SSL, TCP, HTTP DoS mitigation Response inspection for errors and leakage of sensitive information BIG-IP ASM security policy enforced • #1 Most Effective WAF (NSS Labs) • 2780 signatures for best protection • Enable transparent protection from ever- changing threats • Reduce risks from vulnerabilities with dynamic VA/ DAST integrations • Engage unique BOT detection (rapid surfing, intervals, event sequence) • #1 Most Deployed WAF (451 Research) • 10 of OWASP attacks mitigated with on-box reporting • Deploy full-proxy or transparent full-proxy (bridge mode)
© F5 Networks, Inc 16 Mitigate Attacks Across Flexible Environments Internet VIPRION Platform Devices Data Center Load Balancing + DDoS Protection + Application Security BIG-IP ASM • Protect critical apps in the datacenter • Install on any BIG-IP platform • Deploy as an add-on to BIG-IPs in use or run it as a standalone. Protection in the datacenter NO APP LEFT UNPROTECTED! BIG-IP Virtual Edition Securing apps in the cloud BIG-IP ASM VE • Activate security services close to apps that have moved to the cloud • Accelerate development and test Cloud-based app protection Silverline Web App Firewall • Fast activation of ASM protections • Managed service for SaaS and tier 2 applications • 24x7x365 SOC Support
© F5 Networks, Inc 17 ASM SILVERLINE WAF PROTEJA SUAS APLICAÇÕES E ESTEJA SEGURO!!!!!
Next Steps • Visit us online at www.F5.com/security and for more information on F5 security solutions. • Contact your F5 solution expert to discuss effective security solutions that meet specific needs of your organization and those you do business with. Edifício Berrini Plaza Rua Samuel Morse, 134 - 10º andar Brooklin - São Paulo SP Tel: +55 11 5054.4480 CEP: 04576-060 E-mail: info@cylk.com.br
Proteja suas aplicações com segurança F5

Recomendados

F5's IP Intelligence Service
F5's IP Intelligence ServiceF5's IP Intelligence Service
F5's IP Intelligence ServiceF5 Networks
 
F5 Offers Advanced Web Security With BIG-IP v10.1
F5 Offers Advanced Web Security With BIG-IP v10.1F5 Offers Advanced Web Security With BIG-IP v10.1
F5 Offers Advanced Web Security With BIG-IP v10.1DSorensenCPR
 
Why upgrade your MFA to Adaptive Authentication?
Why upgrade your MFA to Adaptive Authentication?Why upgrade your MFA to Adaptive Authentication?
Why upgrade your MFA to Adaptive Authentication?WSO2
 
F5 Web Application Security
F5 Web Application SecurityF5 Web Application Security
F5 Web Application SecurityMarketingArrowECS_CZ
 
Network Field Day 11 - Skyport Systems Presentation
Network Field Day 11 - Skyport Systems PresentationNetwork Field Day 11 - Skyport Systems Presentation
Network Field Day 11 - Skyport Systems PresentationDouglas Gourlay
 
12 palo alto app-id concept
12 palo alto app-id concept12 palo alto app-id concept
12 palo alto app-id conceptMostafa El Lathy
 
MID_Security_Connected_Jan_van_Vliet_EN
MID_Security_Connected_Jan_van_Vliet_ENMID_Security_Connected_Jan_van_Vliet_EN
MID_Security_Connected_Jan_van_Vliet_ENVladyslav Radetsky
 
F5 Networks: миграция c Microsoft TMG
F5 Networks: миграция c Microsoft TMGF5 Networks: миграция c Microsoft TMG
F5 Networks: миграция c Microsoft TMGDmitry Tikhovich
 

Recomendados

F5's IP Intelligence Service
F5's IP Intelligence ServiceF5's IP Intelligence Service
F5's IP Intelligence ServiceF5 Networks
 
F5 Offers Advanced Web Security With BIG-IP v10.1
F5 Offers Advanced Web Security With BIG-IP v10.1F5 Offers Advanced Web Security With BIG-IP v10.1
F5 Offers Advanced Web Security With BIG-IP v10.1DSorensenCPR
 
Why upgrade your MFA to Adaptive Authentication?
Why upgrade your MFA to Adaptive Authentication?Why upgrade your MFA to Adaptive Authentication?
Why upgrade your MFA to Adaptive Authentication?WSO2
 
F5 Web Application Security
F5 Web Application SecurityF5 Web Application Security
F5 Web Application SecurityMarketingArrowECS_CZ
 
Network Field Day 11 - Skyport Systems Presentation
Network Field Day 11 - Skyport Systems PresentationNetwork Field Day 11 - Skyport Systems Presentation
Network Field Day 11 - Skyport Systems PresentationDouglas Gourlay
 
12 palo alto app-id concept
12 palo alto app-id concept12 palo alto app-id concept
12 palo alto app-id conceptMostafa El Lathy
 
MID_Security_Connected_Jan_van_Vliet_EN
MID_Security_Connected_Jan_van_Vliet_ENMID_Security_Connected_Jan_van_Vliet_EN
MID_Security_Connected_Jan_van_Vliet_ENVladyslav Radetsky
 
F5 Networks: миграция c Microsoft TMG
F5 Networks: миграция c Microsoft TMGF5 Networks: миграция c Microsoft TMG
F5 Networks: миграция c Microsoft TMGDmitry Tikhovich
 
WhiteHat Security Presentation
WhiteHat Security PresentationWhiteHat Security Presentation
WhiteHat Security Presentationmarkgmeyer
 
Zero trust in a hybrid architecture
Zero trust in a hybrid architectureZero trust in a hybrid architecture
Zero trust in a hybrid architectureHybrid IT Europe
 
Sophos Cloud - breaking the stereotypes
Sophos Cloud - breaking the stereotypesSophos Cloud - breaking the stereotypes
Sophos Cloud - breaking the stereotypesSophos Benelux
 
F5 Networks: architecture and risk management
F5 Networks: architecture and risk managementF5 Networks: architecture and risk management
F5 Networks: architecture and risk managementAEC Networks
 
Kaspersky Endpoint Security for Business 2015
Kaspersky Endpoint Security for Business 2015Kaspersky Endpoint Security for Business 2015
Kaspersky Endpoint Security for Business 2015Kaspersky
 
Hyper Secure Converged Infrastructure solves architectural challenges
Hyper Secure Converged Infrastructure solves architectural challengesHyper Secure Converged Infrastructure solves architectural challenges
Hyper Secure Converged Infrastructure solves architectural challengesKim Bookout
 
Kaspersky
KasperskyKaspersky
KasperskyKappa Data
 
Integrating Qualys into the patch and vulnerability management processes
Integrating Qualys into the patch and vulnerability management processesIntegrating Qualys into the patch and vulnerability management processes
Integrating Qualys into the patch and vulnerability management processesVladimir Jirasek
 
Why Its time to Upgrade a Next-Generation Firewall
Why Its time to Upgrade a Next-Generation FirewallWhy Its time to Upgrade a Next-Generation Firewall
Why Its time to Upgrade a Next-Generation FirewallAli Kapucu
 
F secure Radar vulnerability scanning and management
F secure Radar vulnerability scanning and managementF secure Radar vulnerability scanning and management
F secure Radar vulnerability scanning and managementF-Secure Corporation
 
Samsung SDS FIDO for Financial Services
Samsung SDS FIDO for Financial ServicesSamsung SDS FIDO for Financial Services
Samsung SDS FIDO for Financial ServicesSamsung SDS America
 
Enterprise Edge Security with Cisco ISE
Enterprise Edge Security with Cisco ISEEnterprise Edge Security with Cisco ISE
Enterprise Edge Security with Cisco ISEFast Lane Consulting and Education, Inc.
 
Fortinet security ecosystem
Fortinet security ecosystemFortinet security ecosystem
Fortinet security ecosystemMark Oakton
 
Application Framework - Palo Alto Networks
Application Framework - Palo Alto NetworksApplication Framework - Palo Alto Networks
Application Framework - Palo Alto NetworksHarry Gunns
 
Strong authentication for your organization in a cost effective cloud-based...
Strong authentication for your organization in a cost effective cloud-based...Strong authentication for your organization in a cost effective cloud-based...
Strong authentication for your organization in a cost effective cloud-based...NetwayClub
 
FortiGate-80C
FortiGate-80CFortiGate-80C
FortiGate-80CКомпания ИНТРО
 
Identiverse - Microservices Security
Identiverse - Microservices SecurityIdentiverse - Microservices Security
Identiverse - Microservices SecurityBertrand Carlier
 
Miben nyújt többet a Cisco ASA + FirePOWER Services?
Miben nyújt többet a Cisco ASA + FirePOWER Services?Miben nyújt többet a Cisco ASA + FirePOWER Services?
Miben nyújt többet a Cisco ASA + FirePOWER Services?S&T Consulting Hungary
 
Verimatrix-Comvenient Acquisition 3-31-11
Verimatrix-Comvenient Acquisition 3-31-11Verimatrix-Comvenient Acquisition 3-31-11
Verimatrix-Comvenient Acquisition 3-31-11Verimatrix
 
Marist Hancock example
Marist Hancock exampleMarist Hancock example
Marist Hancock exampleJanine Fisher
 
Practica 7
Practica 7Practica 7
Practica 7drackfke01
 
2 de octubre de 1968
2 de octubre de 19682 de octubre de 1968
2 de octubre de 1968drackfke01
 

Mais conteúdo relacionado

Mais procurados

WhiteHat Security Presentation
WhiteHat Security PresentationWhiteHat Security Presentation
WhiteHat Security Presentationmarkgmeyer
 
Zero trust in a hybrid architecture
Zero trust in a hybrid architectureZero trust in a hybrid architecture
Zero trust in a hybrid architectureHybrid IT Europe
 
Sophos Cloud - breaking the stereotypes
Sophos Cloud - breaking the stereotypesSophos Cloud - breaking the stereotypes
Sophos Cloud - breaking the stereotypesSophos Benelux
 
F5 Networks: architecture and risk management
F5 Networks: architecture and risk managementF5 Networks: architecture and risk management
F5 Networks: architecture and risk managementAEC Networks
 
Kaspersky Endpoint Security for Business 2015
Kaspersky Endpoint Security for Business 2015Kaspersky Endpoint Security for Business 2015
Kaspersky Endpoint Security for Business 2015Kaspersky
 
Hyper Secure Converged Infrastructure solves architectural challenges
Hyper Secure Converged Infrastructure solves architectural challengesHyper Secure Converged Infrastructure solves architectural challenges
Hyper Secure Converged Infrastructure solves architectural challengesKim Bookout
 
Integrating Qualys into the patch and vulnerability management processes
Integrating Qualys into the patch and vulnerability management processesIntegrating Qualys into the patch and vulnerability management processes
Integrating Qualys into the patch and vulnerability management processesVladimir Jirasek
 
Why Its time to Upgrade a Next-Generation Firewall
Why Its time to Upgrade a Next-Generation FirewallWhy Its time to Upgrade a Next-Generation Firewall
Why Its time to Upgrade a Next-Generation FirewallAli Kapucu
 
F secure Radar vulnerability scanning and management
F secure Radar vulnerability scanning and managementF secure Radar vulnerability scanning and management
F secure Radar vulnerability scanning and managementF-Secure Corporation
 
Samsung SDS FIDO for Financial Services
Samsung SDS FIDO for Financial ServicesSamsung SDS FIDO for Financial Services
Samsung SDS FIDO for Financial ServicesSamsung SDS America
 
Fortinet security ecosystem
Fortinet security ecosystemFortinet security ecosystem
Fortinet security ecosystemMark Oakton
 
Application Framework - Palo Alto Networks
Application Framework - Palo Alto NetworksApplication Framework - Palo Alto Networks
Application Framework - Palo Alto NetworksHarry Gunns
 
Strong authentication for your organization in a cost effective cloud-based...
Strong authentication for your organization in a cost effective cloud-based...Strong authentication for your organization in a cost effective cloud-based...
Strong authentication for your organization in a cost effective cloud-based...NetwayClub
 
Identiverse - Microservices Security
Identiverse - Microservices SecurityIdentiverse - Microservices Security
Identiverse - Microservices SecurityBertrand Carlier
 
Miben nyújt többet a Cisco ASA + FirePOWER Services?
Miben nyújt többet a Cisco ASA + FirePOWER Services?Miben nyújt többet a Cisco ASA + FirePOWER Services?
Miben nyújt többet a Cisco ASA + FirePOWER Services?S&T Consulting Hungary
 
Verimatrix-Comvenient Acquisition 3-31-11
Verimatrix-Comvenient Acquisition 3-31-11Verimatrix-Comvenient Acquisition 3-31-11
Verimatrix-Comvenient Acquisition 3-31-11Verimatrix
 

Mais procurados (19)

WhiteHat Security Presentation
WhiteHat Security PresentationWhiteHat Security Presentation
WhiteHat Security Presentation
 
Zero trust in a hybrid architecture
Zero trust in a hybrid architectureZero trust in a hybrid architecture
Zero trust in a hybrid architecture
 
Sophos Cloud - breaking the stereotypes
Sophos Cloud - breaking the stereotypesSophos Cloud - breaking the stereotypes
Sophos Cloud - breaking the stereotypes
 
F5 Networks: architecture and risk management
F5 Networks: architecture and risk managementF5 Networks: architecture and risk management
F5 Networks: architecture and risk management
 
Kaspersky Endpoint Security for Business 2015
Kaspersky Endpoint Security for Business 2015Kaspersky Endpoint Security for Business 2015
Kaspersky Endpoint Security for Business 2015
 
Hyper Secure Converged Infrastructure solves architectural challenges
Hyper Secure Converged Infrastructure solves architectural challengesHyper Secure Converged Infrastructure solves architectural challenges
Hyper Secure Converged Infrastructure solves architectural challenges
 
Kaspersky
KasperskyKaspersky
Kaspersky
 
Integrating Qualys into the patch and vulnerability management processes
Integrating Qualys into the patch and vulnerability management processesIntegrating Qualys into the patch and vulnerability management processes
Integrating Qualys into the patch and vulnerability management processes
 
Why Its time to Upgrade a Next-Generation Firewall
Why Its time to Upgrade a Next-Generation FirewallWhy Its time to Upgrade a Next-Generation Firewall
Why Its time to Upgrade a Next-Generation Firewall
 
F secure Radar vulnerability scanning and management
F secure Radar vulnerability scanning and managementF secure Radar vulnerability scanning and management
F secure Radar vulnerability scanning and management
 
Samsung SDS FIDO for Financial Services
Samsung SDS FIDO for Financial ServicesSamsung SDS FIDO for Financial Services
Samsung SDS FIDO for Financial Services
 
Enterprise Edge Security with Cisco ISE
Enterprise Edge Security with Cisco ISEEnterprise Edge Security with Cisco ISE
Enterprise Edge Security with Cisco ISE
 
Fortinet security ecosystem
Fortinet security ecosystemFortinet security ecosystem
Fortinet security ecosystem
 
Application Framework - Palo Alto Networks
Application Framework - Palo Alto NetworksApplication Framework - Palo Alto Networks
Application Framework - Palo Alto Networks
 
Strong authentication for your organization in a cost effective cloud-based...
Strong authentication for your organization in a cost effective cloud-based...Strong authentication for your organization in a cost effective cloud-based...
Strong authentication for your organization in a cost effective cloud-based...
 
FortiGate-80C
FortiGate-80CFortiGate-80C
FortiGate-80C
 
Identiverse - Microservices Security
Identiverse - Microservices SecurityIdentiverse - Microservices Security
Identiverse - Microservices Security
 
Miben nyújt többet a Cisco ASA + FirePOWER Services?
Miben nyújt többet a Cisco ASA + FirePOWER Services?Miben nyújt többet a Cisco ASA + FirePOWER Services?
Miben nyújt többet a Cisco ASA + FirePOWER Services?
 
Verimatrix-Comvenient Acquisition 3-31-11
Verimatrix-Comvenient Acquisition 3-31-11Verimatrix-Comvenient Acquisition 3-31-11
Verimatrix-Comvenient Acquisition 3-31-11
 

Destaque

Marist Hancock example
Marist Hancock exampleMarist Hancock example
Marist Hancock exampleJanine Fisher
 
2 de octubre de 1968
2 de octubre de 19682 de octubre de 1968
2 de octubre de 1968drackfke01
 
SWEGS Kitchen Presentation
SWEGS Kitchen PresentationSWEGS Kitchen Presentation
SWEGS Kitchen Presentationnjmaki
 
State of the Firm 2008 FINAL
State of the Firm 2008 FINALState of the Firm 2008 FINAL
State of the Firm 2008 FINALJanine Fisher
 
Ciara beresford project_2
Ciara beresford project_2Ciara beresford project_2
Ciara beresford project_2ciaraberesford
 
SAP ECC EHP7 BW 7.4 Remote Access
SAP ECC EHP7 BW 7.4 Remote AccessSAP ECC EHP7 BW 7.4 Remote Access
SAP ECC EHP7 BW 7.4 Remote AccessSonali Kulkarni
 
Cardboard seating system
Cardboard seating systemCardboard seating system
Cardboard seating systemciaraberesford
 
point3D_3D_360_Oct-2016
point3D_3D_360_Oct-2016point3D_3D_360_Oct-2016
point3D_3D_360_Oct-2016Amy Reinicker
 
Ciara beresford project_3
Ciara beresford project_3Ciara beresford project_3
Ciara beresford project_3ciaraberesford
 
Get_Started_with_LinkedIn
Get_Started_with_LinkedInGet_Started_with_LinkedIn
Get_Started_with_LinkedInJanine Fisher
 

Destaque (12)

Marist Hancock example
Marist Hancock exampleMarist Hancock example
Marist Hancock example
 
Practica 7
Practica 7Practica 7
Practica 7
 
2 de octubre de 1968
2 de octubre de 19682 de octubre de 1968
2 de octubre de 1968
 
Impresoras 3D
Impresoras 3DImpresoras 3D
Impresoras 3D
 
SWEGS Kitchen Presentation
SWEGS Kitchen PresentationSWEGS Kitchen Presentation
SWEGS Kitchen Presentation
 
State of the Firm 2008 FINAL
State of the Firm 2008 FINALState of the Firm 2008 FINAL
State of the Firm 2008 FINAL
 
Ciara beresford project_2
Ciara beresford project_2Ciara beresford project_2
Ciara beresford project_2
 
SAP ECC EHP7 BW 7.4 Remote Access
SAP ECC EHP7 BW 7.4 Remote AccessSAP ECC EHP7 BW 7.4 Remote Access
SAP ECC EHP7 BW 7.4 Remote Access
 
Cardboard seating system
Cardboard seating systemCardboard seating system
Cardboard seating system
 
point3D_3D_360_Oct-2016
point3D_3D_360_Oct-2016point3D_3D_360_Oct-2016
point3D_3D_360_Oct-2016
 
Ciara beresford project_3
Ciara beresford project_3Ciara beresford project_3
Ciara beresford project_3
 
Get_Started_with_LinkedIn
Get_Started_with_LinkedInGet_Started_with_LinkedIn
Get_Started_with_LinkedIn
 

Semelhante a Proteja suas aplicações com segurança F5

Architecting Application Services For Hybrid Cloud - AWS Summit SG 2017
Architecting Application Services For Hybrid Cloud - AWS Summit SG 2017Architecting Application Services For Hybrid Cloud - AWS Summit SG 2017
Architecting Application Services For Hybrid Cloud - AWS Summit SG 2017Amazon Web Services
 
F5 Networks: Introduction to Silverline WAF (web application firewall)
F5 Networks: Introduction to Silverline WAF (web application firewall)F5 Networks: Introduction to Silverline WAF (web application firewall)
F5 Networks: Introduction to Silverline WAF (web application firewall)F5 Networks
 
F5 XC Distributed cloud Security and Application Delievery
F5 XC Distributed cloud Security and Application DelieveryF5 XC Distributed cloud Security and Application Delievery
F5 XC Distributed cloud Security and Application Delieverystkannan1
 
Prevent threats With Analytics Driven Web Application Firewall
Prevent threats With Analytics Driven Web Application FirewallPrevent threats With Analytics Driven Web Application Firewall
Prevent threats With Analytics Driven Web Application FirewallAvi Networks
 
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.Scalar Decisions
 
클라우드 환경에서의 SIEMLESS 통합 보안 서비스, Alert Logic - 채현주 보안기술본부장, Openbase :: AWS Sum...
클라우드 환경에서의 SIEMLESS 통합 보안 서비스, Alert Logic - 채현주 보안기술본부장, Openbase :: AWS Sum...클라우드 환경에서의 SIEMLESS 통합 보안 서비스, Alert Logic - 채현주 보안기술본부장, Openbase :: AWS Sum...
클라우드 환경에서의 SIEMLESS 통합 보안 서비스, Alert Logic - 채현주 보안기술본부장, Openbase :: AWS Sum...Amazon Web Services Korea
 
Data Center Server security
Data Center Server securityData Center Server security
Data Center Server securityxband
 
Deploying Secure Modern Apps in Evolving Infrastructures
Deploying Secure Modern Apps in Evolving InfrastructuresDeploying Secure Modern Apps in Evolving Infrastructures
Deploying Secure Modern Apps in Evolving InfrastructuresSBWebinars
 
Protecting web aplications with machine learning and security fabric
Protecting web aplications with machine learning and security fabricProtecting web aplications with machine learning and security fabric
Protecting web aplications with machine learning and security fabricDATA SECURITY SOLUTIONS
 
Cisco Network Insider Series: Securing Your Branch for DIA
Cisco Network Insider Series: Securing Your Branch for DIACisco Network Insider Series: Securing Your Branch for DIA
Cisco Network Insider Series: Securing Your Branch for DIARobb Boyd
 
Application Secuirty in the Cloud
Application Secuirty in the CloudApplication Secuirty in the Cloud
Application Secuirty in the CloudSteven_Jackson
 
Easily View, Manage, and Scale Your App Security with F5 NGINX
Easily View, Manage, and Scale Your App Security with F5 NGINXEasily View, Manage, and Scale Your App Security with F5 NGINX
Easily View, Manage, and Scale Your App Security with F5 NGINXNGINX, Inc.
 
Next Generation Security
Next Generation SecurityNext Generation Security
Next Generation SecurityCisco Canada
 
Protect Your Data and Apps in the Public Cloud
Protect Your Data and Apps in the Public CloudProtect Your Data and Apps in the Public Cloud
Protect Your Data and Apps in the Public CloudImperva
 
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)Cisco Canada
 
2019-F5-Line-Card.pptx
2019-F5-Line-Card.pptx2019-F5-Line-Card.pptx
2019-F5-Line-Card.pptxAns Sembiring
 
F5 Synthesis Toronto February 2014 Roadshow
F5 Synthesis Toronto February 2014 RoadshowF5 Synthesis Toronto February 2014 Roadshow
F5 Synthesis Toronto February 2014 Roadshowpatmisasi
 

Semelhante a Proteja suas aplicações com segurança F5 (20)

Architecting Application Services For Hybrid Cloud - AWS Summit SG 2017
Architecting Application Services For Hybrid Cloud - AWS Summit SG 2017Architecting Application Services For Hybrid Cloud - AWS Summit SG 2017
Architecting Application Services For Hybrid Cloud - AWS Summit SG 2017
 
F5 Networks: Introduction to Silverline WAF (web application firewall)
F5 Networks: Introduction to Silverline WAF (web application firewall)F5 Networks: Introduction to Silverline WAF (web application firewall)
F5 Networks: Introduction to Silverline WAF (web application firewall)
 
F5 XC Distributed cloud Security and Application Delievery
F5 XC Distributed cloud Security and Application DelieveryF5 XC Distributed cloud Security and Application Delievery
F5 XC Distributed cloud Security and Application Delievery
 
Prevent threats With Analytics Driven Web Application Firewall
Prevent threats With Analytics Driven Web Application FirewallPrevent threats With Analytics Driven Web Application Firewall
Prevent threats With Analytics Driven Web Application Firewall
 
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.
 
클라우드 환경에서의 SIEMLESS 통합 보안 서비스, Alert Logic - 채현주 보안기술본부장, Openbase :: AWS Sum...
클라우드 환경에서의 SIEMLESS 통합 보안 서비스, Alert Logic - 채현주 보안기술본부장, Openbase :: AWS Sum...클라우드 환경에서의 SIEMLESS 통합 보안 서비스, Alert Logic - 채현주 보안기술본부장, Openbase :: AWS Sum...
클라우드 환경에서의 SIEMLESS 통합 보안 서비스, Alert Logic - 채현주 보안기술본부장, Openbase :: AWS Sum...
 
Data Center Server security
Data Center Server securityData Center Server security
Data Center Server security
 
Deploying Secure Modern Apps in Evolving Infrastructures
Deploying Secure Modern Apps in Evolving InfrastructuresDeploying Secure Modern Apps in Evolving Infrastructures
Deploying Secure Modern Apps in Evolving Infrastructures
 
Forti web
Forti webForti web
Forti web
 
Forti web
Forti webForti web
Forti web
 
Protecting web aplications with machine learning and security fabric
Protecting web aplications with machine learning and security fabricProtecting web aplications with machine learning and security fabric
Protecting web aplications with machine learning and security fabric
 
Cisco Network Insider Series: Securing Your Branch for DIA
Cisco Network Insider Series: Securing Your Branch for DIACisco Network Insider Series: Securing Your Branch for DIA
Cisco Network Insider Series: Securing Your Branch for DIA
 
Application Secuirty in the Cloud
Application Secuirty in the CloudApplication Secuirty in the Cloud
Application Secuirty in the Cloud
 
Easily View, Manage, and Scale Your App Security with F5 NGINX
Easily View, Manage, and Scale Your App Security with F5 NGINXEasily View, Manage, and Scale Your App Security with F5 NGINX
Easily View, Manage, and Scale Your App Security with F5 NGINX
 
Next Generation Security
Next Generation SecurityNext Generation Security
Next Generation Security
 
Protect Your Data and Apps in the Public Cloud
Protect Your Data and Apps in the Public CloudProtect Your Data and Apps in the Public Cloud
Protect Your Data and Apps in the Public Cloud
 
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)
 
Virtualization / Cloud / SDN
Virtualization / Cloud / SDNVirtualization / Cloud / SDN
Virtualization / Cloud / SDN
 
2019-F5-Line-Card.pptx
2019-F5-Line-Card.pptx2019-F5-Line-Card.pptx
2019-F5-Line-Card.pptx
 
F5 Synthesis Toronto February 2014 Roadshow
F5 Synthesis Toronto February 2014 RoadshowF5 Synthesis Toronto February 2014 Roadshow
F5 Synthesis Toronto February 2014 Roadshow
 

Último

Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Manik S Magar
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr BaganFwdays
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piececharlottematthew16
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Enterprise Knowledge
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostZilliz
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Wonjun Hwang
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 3652toLead Limited
 
The Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdfThe Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdfSeasiaInfotech2
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubKalema Edgar
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 

Último (20)

Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piece
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365
 
The Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdfThe Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdf
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding Club
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 

Proteja suas aplicações com segurança F5

  • 1. Proteja suas Aplicações e esteja Seguro Vinicius Miranda, Sales Engineer WestconGroup, vinicius.miranda@westcon.com
  • 2. © F5 Networks, Inc 2 • A Importância da Proteção para suas Aplicações; • Qual a Diferença entre o Firewall Tradicional e o Firewall de Aplicação? • Principais Ataques Direcionados para as Aplicações; • Como a F5 Networks ajuda na Proteção das suas Aplicações? • Duvidas; Agenda
  • 3. A Importância da Proteção para as Aplicações
  • 4. © F5 Networks, Inc 4 Business App Security Access Proteção da Aplicação é igual a Proteção do Negócio? Vazamento de Dados Roubo de Credencial Fraude US$ 81 Milhões 8.695 casos no Brasil entre 2014/2015 – PwC 16
  • 5. © F5 Networks, Inc 5 Como comprovar essa realidade? Source: Akamai Report
  • 6. Firewall Tradicional e Firewall de Aplicação, qual é a Diferença???
  • 7. © F5 Networks, Inc 7 Vamos entender… “Next generation” Firewall Characteristics • Outbound USER inspection • Who is doing what? • “Trusted” users to Internet Corporate (users) Web Application Firewall Data center (servers) Characteristics • Inbound APPLICATION protection • Application delivery focus • “Untrusted” users to data center
  • 8. © F5 Networks, Inc 8 Ok…mas qual é a diferença entre eles? Multiprotocol Security  IP Reputation   Web Attack Signatures  Web Vulnerabilities Signatures   Automatic Policy Learning  URL, Parameter, Cookie and Form Protection  Leverage Vulnerability Scan Results 
  • 10. © F5 Networks, Inc 10 Roubo de Credencial, Vazamento de Dados, Aplicações Lentas… SQL Injection Cross-Site Scripting XSS Parameter Tampering
  • 11. © F5 Networks, Inc 11 Vulnerabilidades nas Aplicações WEB… 7% 2014 40% 2016 Como estar protegido diante deste Cenário?
  • 12. Como a F5 Networks pode ajudar?
  • 13. © F5 Networks, Inc 13 The New Perimeter Is An App Perimeter Apps Are The Gateway to Data! F5 SS L SS L SS L APP PER-APP / PER-USER PERIMETER SSL-visible ✖ ✔ Location-independent ✖ ✔ Session-based ✖ ✔ Continuous trust verification ✖ ✔ Strategic control points ✖ ✔ App availability ✖ ✔ TRADITIONAL TRADITIONAL NETWORK PERIMETER App
  • 14. © F5 Networks, Inc 14 Let’s talk about Web Application Firewall - WAF • A Web application firewall protects Web servers from malicious traffic and blocks attempts to compromise the system. • It prevents targeted attacks that include cross-site scripting, SQL injection, forceful browsing,cookie poisoning and invalid input. • The F5 BIG-IP® Application Security Manager is a Web application firewall that uses both positive and negative security models to identify, isolate and block sophisticated attacks without impacting legitimate application transactions. ASM
  • 15. © F5 Networks, Inc 15 The Value Of F5 Hybrid WAF Protection Secure response delivered Request made BIG-IP ASM security policy checked Server response generated Vulnerable application • Drop, block or forward request • Application attack filtering & inspection • SSL, TCP, HTTP DoS mitigation Response inspection for errors and leakage of sensitive information BIG-IP ASM security policy enforced • #1 Most Effective WAF (NSS Labs) • 2780 signatures for best protection • Enable transparent protection from ever- changing threats • Reduce risks from vulnerabilities with dynamic VA/ DAST integrations • Engage unique BOT detection (rapid surfing, intervals, event sequence) • #1 Most Deployed WAF (451 Research) • 10 of OWASP attacks mitigated with on-box reporting • Deploy full-proxy or transparent full-proxy (bridge mode)
  • 16. © F5 Networks, Inc 16 Mitigate Attacks Across Flexible Environments Internet VIPRION Platform Devices Data Center Load Balancing + DDoS Protection + Application Security BIG-IP ASM • Protect critical apps in the datacenter • Install on any BIG-IP platform • Deploy as an add-on to BIG-IPs in use or run it as a standalone. Protection in the datacenter NO APP LEFT UNPROTECTED! BIG-IP Virtual Edition Securing apps in the cloud BIG-IP ASM VE • Activate security services close to apps that have moved to the cloud • Accelerate development and test Cloud-based app protection Silverline Web App Firewall • Fast activation of ASM protections • Managed service for SaaS and tier 2 applications • 24x7x365 SOC Support
  • 17. © F5 Networks, Inc 17 ASM SILVERLINE WAF PROTEJA SUAS APLICAÇÕES E ESTEJA SEGURO!!!!!
  • 18. Next Steps • Visit us online at www.F5.com/security and for more information on F5 security solutions. • Contact your F5 solution expert to discuss effective security solutions that meet specific needs of your organization and those you do business with. Edifício Berrini Plaza Rua Samuel Morse, 134 - 10º andar Brooklin - São Paulo SP Tel: +55 11 5054.4480 CEP: 04576-060 E-mail: info@cylk.com.br