Fortinet announces another next-gen OS, this time for web security
By Digital News Asia June 4, 2013
- Advancements include ability to accurately identify origin of Web application traffic
- Announces three new appliances for large enterprises, service providers and data centres
NETWORK security company Fortinet has introduced another ‘next-generation’ operating system (OS), this time for its FortiWeb Web application firewalls product family.
In March, the company had rolled out what it said was its next-gen OS for its family of FortiMail email security appliances.
This time around, it said its new FortiWeb 5 OS, which is backward compatible with the entire FortiWeb family, features critical security advancements that include the ability to accurately identify the origin of Web application traffic to proactively distinguish between legitimate and malicious sources.
FortiWeb provides the ability to distinguish between legitimate known search engine requests, scanners, crawlers and other threshold based tools, the company said in a statement.
This expands the bot identification and analysis coverage recently introduced with the FortiGuard IP Reputation service, which monitors IPs that are compromised or behaving abnormally.
Because today’s Web applications are being accessed and/ or targeted by automated scripting tools, scans, search engines and unknown or malicious sources, security administrators need to quickly and easily identify those sources and traffic types, the company said.
This is critical to distinguish good and bad traffic types and sources. FortiWeb technology now provides a graphical dashboard to easily spot and track bot traffic trends, Fortinet added.
Moreover, the need to protect against application layer DoS (denial of service) attacks is increasingly important given the precipitous rise in attacks on application resources. This is in stark contrast to hackers’ previous focus on disrupting network bandwidth.
FortiWeb 5 expands the previously released challenge response mechanism that distinguishes legitimate Web application requests from automated DoS tools to support in multiple different policies, providing better flexibility and granularity, Fortinet said.
And as data centers continue their ongoing transition from IPv4 to IPv6, the need to provide bi-directional support between the two communications protocols is essential to maintaining optimal security. FortiWeb 5.0 fully supports IPv4-to-IPv6 and IPv6-to-IPv4 communications, it added.
In conjunction with the FortiWeb 5 rollout, Fortinet is also introducing three new Web application firewall appliances: The FortiWeb-3000D (pic), FortiWeb-3000DFsx and FortiWeb-4000D.
These are designed for large enterprises, service providers and large data centres that require high performance Web application security, the company said.
The FortiWeb-3000D and FortiWeb-3000DFsx support up to 1.5 Gbps of throughput while the FortiWeb-4000D supports up 4 Gbps.
The new appliances are 50% to 100% faster than their predecessors and provide robust protection against the Open Web Application Security Project (OWASP) Top 10 risks and aid in PCI DSS 6.6 compliance, Fortinet claimed.
For more technology news and the latest updates, follow @dnewsasia on Twitter or Like us on Facebook.