24-Oct-2019
Web Application Firewall cloud deployment enables greater agility, faster time to market and cost savings by providing flexible payment models. Since the version 6.5.3 of R&S Web Application Firewall it is available with automated deployment and scalable security capability on Amazon Web Services (AWS). By adding Microsoft Azure as an alternative cloud platform Rohde & Schwarz Cybersecurity enables its customers to benefit from a multi-cloud strategy for redundancy, cost-savings reasons or to avoid vendor lock-in. Beyond cloud reliability and economic considerations, broader business or technical goals, such as performance, capacity or features availability may also promote multi-cloud adoption. Rohde & Schwarz Cybersecurity will continue to pursue its cloud strategy by adding Google Cloud Platform (GCP) in the next release in order to cater for the most demanding deployment requirements and to offer the maximum flexibility.
Low-touch management
The latest version of the R&S Web Application Firewall offers low touch deployment and management of the Web Application Firewall in the cloud. Seamless deployment on Microsoft Azure is performed via Terraform template whereby new instances of the R&S Web Application Firewall are automatically created as and when needed. R&S Web Application Firewall offers the customer dynamic configuration orchestration using an API to facilitate administration and management. A hybrid deployment with a mix of Microsoft Azure and on-premises solutions is also possible.
Optimize performance and cost
Cloud-deployed R&S Web Application Firewall has inherent capacity to dynamically changing traffic needs (scaling both up and down). The autoscaler is able to handle traffic with mixed instances "Bring Your Own Licenses" (BYOL) and "Pay-as-you-go" (PAYG) to leverage the best security and application availability while optimizing costs. BYOL instances remain available permanently, while PAYG instances are created by the respective cloud platform’s autoscaler during demand spikes.
Mitigate bot according to your context
Rohde & Schwarz Cybersecurity bot detection method is based on a user challenge approach, which allows to differentiate traffic as follows: human traffic, good bot or malicious bot. As of version 6.5.4, the bot mitigation feature of R&S Web Application Firewall has been significantly improved by industrializing the security bricks within the workflow system. The newly available security bricks allow to create a bot mitigation strategy based on customer requirements by simply selecting the most appropriate bricks. The administrator may choose to deter all bad bot, to apply more granular restrictions on the security policy or to use the brick to allow good bots only. The effortless decision making mechanism is characteristic of R&S Web Application Firewall as it allows Web Application Firewall administrators to fine-tune the security policy to their specific business needs while simultaneously reducing the false positives.