Product reviews & Awards »
Events »
Press releases »
Media coverage »

Press release details

New Web Application Firewall Service from StillSecure® Covers Key Requirement for PCI Compliance

Part of the ProtectPoint® Suite of Services, the Web Application Firewall Focuses on Protecting Web Servers
(Superior, Colo. – July 26, 2010) – StillSecure, provider of secure network infrastructure solutions, today announced that its ProtectPoint Web Application Firewall (WAF) service is now available. Managed 24x7x365 by StillSecure’s world-class Security Operations Center (SOC), the WAF service addresses PCI requirements 6.5 and 6.6 and demonstrates StillSecure’s ongoing commitment to delivering hassle-free PCI compliance.

The ProtectPoint Web Application Firewall Service protects web servers and web-based applications from attack by monitoring input, output, and access attempts, and blocking any malicious activity. When attacks are detected, the web application firewall alerts SOC analysts in real time. Based on severity, attacks are blocked automatically or reviewed by analysts, who then take appropriate action. The service protects against the full range of OWASP Top 10 application vulnerabilities, including:
  • Cross-site scripting (XSS)
  • Injection flaws (SQL, LDAP, Xpath, and others)
  • Malicious file execution
  • Insecure direct object references
  • Cross-site request forgery (CSRF)
  • Information leakage and improper error handling
  • Broken authentication and session management
  • Insecure cryptographic storage
  • Insecure communications
  • Failure to restrict URL access
All events are reported through RADAR, our secure customer portal. Reporting and operations processes provide full evidence of compliance for PCI Quality Security Assessors or for self-assessment questionnaires.

“Web application firewalls are mandatory these days to ensure that Web servers and their associated applications and data are protected and secure,” said David Greenstein, Chief Architect at StillSecure. “This is just another step forward toward being able to address all PCI requirements with a simple holistic solution.”

“The management and operation of web application firewalls are time consuming and complex,” said Lenny Chesal, VP of Strategic Sales & CMO at Host.net. “StillSecure’s new WAF service is perfect for our customers. Not only does StillSecure take responsibility for managing the system, they ensure that our customers are compliant with strict regulations such as PCI.”

The Web Application Firewall service is available immediately.

About ProtectPoint
StillSecure’s ProtectPoint managed security services help organizations lower total cost of ownership by leveraging external security experts as an extension of their staff. Managed security services include firewall, IDS/IPS, VPN, web application firewall, web security, email security, log management, vulnerability scanning, and client-owned devices, which are all backed by a 24x7x365 Security Operations Center (SOC) that is staffed by certified security analysts. For additional information, please visit http://www.stillsecure.com/services.

About StillSecure

StillSecure delivers comprehensive network security that protects organizations from the perimeter to the endpoint. Offering both products and managed security services, StillSecure enables customers to affordably deploy the optimal blend of technologies for locking down their assets and complying with security policies and regulations. StillSecure customers range from mid-market companies to the world's largest enterprises and agencies in government, financial services, healthcare, education, and technology. For more information please call (303) 381-3830, or visit http://www.stillsecure.com