About the company:
Reblaze is a leading provider of next-generation Web Application Firewall (WAF) solutions. The platform provides real-time protection and control for all modern architectures in various combinations. Reblaze’s customers include Fortune 500 companies and other innovative organizations around the world.
The platform is SaaS-based. Each organization uses a separate virtual private cloud environment, thus eliminating multi-tenancy vulnerabilities. To ensure maximum performance, all traffic is routed through Reblaze.
Solutions:
Next-Generation WAF/IPS
Reblaze Web Application Firewall (WAF) provides certified protection against various vulnerabilities. The solution is part of a virtual private cloud platform with advanced a15> features for security, such as: black lists of threats, white lists of applications and analysis of behavior. The technology for controlling access allows organizations to have complete control over their traffic. IT administrators can allow or prohibit network traffic from specific countries, cities, networks, companies, anonymizing networks, cloud networks and data centers.
DDoS Protection
Reblaze offers a multi-layered approach to protecting against DDoS attacks, including network-level protection, application protection and intelligent traffic filtering. The solution is designed to reduce attacks in real-time without disrupting legitimate traffic, and includes advanced analytics and reporting features that help organizations better understand and respond to attacks.
BOT Management
The solution uses ACL profiling and browsing environments, a basic filter, and a dynamic filter to block requesters that show anomalies in user patterns. A behavioural profile of legitimate users is created through biometric behavioural analysis. Reblaze BOT Management is part of a single, integrated web security platform that also includes next-generation WAF, three-layer DDoS protection, API protection, real-time traffic control, DevSecOps, CDN and load balancing.
Global CDN Integration
Reblaze integrates seamlessly with almost all CDN providers (including cache and SSL management, analytics, and security). Data centers can serve more users faster. By ensuring faster website loading, the solution can prevent the loss of visitors and customers. Reblaze provides additional optimization by consolidating and reusing dynamic links. This way the server manages fewer connections and again improves site performance. Depending on the type of content, the solution can serve your site even when your servers are unavailable. You don’t need to maintain additional internal server capacity for occasional spikes in demand.
Real Time Traffic Control
Reblaze gives you full visibility of your traffic in real time, showing you what’s actually happening right now – who’s visiting your site, where they came from, what they’re looking at, etc. You can view traffic data by individual visitor or aggregated by city, country, company, network, browsing behavior, etc. The platform is set up to protect an organisation’s web assets by default, this means that as web threats evolve Reblaze adapts and countermeasures are automatically deployed to protect the web.
API Security
Reblaze’s API security solution is designed to provide complete protection for web services and applications with different types of architectures. Traditional web security approaches cannot fully protect APIs. Reblaze offers an SDK at the client that provides TLS encryption and continuous authentication of application traffic. All communication includes HMAC signatures (a mechanism for cryptographic identification by the client), ensuring that only requests from legitimate users are accepted. As the API evolves, Reblaze automatically creates new sets of rules, and administrators can approve, reject, or modify them as needed.
Account Takeover (ATO) Prevention
Решението блокира неоторизирани опити за използване или откриване на данни за достъп до потребителски акаунти, компрометиране на активни сесии и други форми на АТО. Платформата използва User and Entity Behavior Analytics (UEBA) и Machine Learning за изграждане на фини биометрични поведенчески профили на всички удостоверени потребители в организацията. При заплаха взема решения не само според източника на трафик, но и според самоличността, поведението и намерението на всеки потребител. As a fully managed platform, Reblaze is updated as soon as new security policies are issued. Even when hackers develop new attack techniques, Reblaze provides robust protection automatically.
Reblaze provides unique security technology as a single, integrated platform that can protect customers’ assets from the multitude of threats that exist on the Internet, along with compliant and certified protection. Reblaze’s cloud environments are fully compliant with GDPR, SOC 1/SSAE 16/ISAE 3402, FISMA Moderate, PCI DSS, ISO 27001, FIPS 140-2, HIPAA, CSA (Cloud Security Alliance) and Reblaze Technologies is ISO 27001 certified, AICPA SOC 2 certified and is a PCI DSS Level 1 and Level 2 Service Provider certified.
