Web Application Firewall Targets XSRF Attacks -- THE Journal

Close this Advertisement

Data Security | News

Web Application Firewall Targets XSRF Attacks

By Leila Meyer
02/22/11

The Mykonos Security Appliance adds improvements in speed, latency, redundancy, and reporting.

Mykonos Software has released an enhanced Mykonos Security Appliance, a next-generation Web application firewall (WAF) designed to protect Web sites from hackers, fraud, and theft. Unlike legacy signature-based systems, Mykonos inserts thousands of detection points into Web apps to identify attackers before they cause damage. The latest release includes a new security processor designed to eliminate cross-site request forgery (XSRF) attacks.

The Mykonos Security Appliance sits between the Web application server and the client. It inserts detection points, or "code-level honey pots," into the Web app, creating virtual landmines that detect and prevent attack attempts. Once it detects a threat, it tags the attacker with a security token that persists after the session ends and is not tied to the attacker's IP address. After the attacker is detected and tagged, the appliance uses an intelligence-gathering process called "Hacker Hoops and Hurdles" to create a profile of the person's skill and threat level. The Mykonos Security Appliance is designed to protect against attacks before they cause damage.

Key features of the latest version of Mykonos Security Appliance include:

New security processor designed to eliminate cross-site request forgery (XSRF) or "one-click" attacks;
Unique tagging of attackers with a security token to identify and block subsequent attack attempts;
Captcha processor to detect bots or other automated scripts;
Enhanced reporting management system and security monitor console;
SSL configuration for internal communication security and third-party authentication for access to the appliance;
Multiple VLAN connections; and
Command-line interface for power users.

The latest version also includes significant improvements in speed, latency, redundancy, and reporting.

Mykonos Security Appliance is available now. Further information can be found here.

About the Author

Leila Meyer is a technology writer based in British Columbia. She can be reached at leilameyer@gmail.com.

comments powered by Disqus

Share this Page

Sponsored Links

T.H.E. Journal Magazine

May 2013 Issue
Available Now

Free Subscription
to THE Journal

Issue Archive

800 Teachers use Splashtop Remote Desktop and Whiteboard at Val Verde Unified School District
Download this case study to learn how Val Verde Unified School District leapfrogged its old, expensive SMARTboard and Interwrite tablet technology by equipping its teachers with Splashtop Whiteboard and iPads. Read more...

all white papers

If you have comments or questions about our magazine features or stories, please e-mail the editorial staff at editorial@thejournal.com. If you have any comments or questions about content found on this Web site, please e-mail David Nagel at dnagel@1105media.com. If you have any comments or questions about subscriptions, please e-mail THEJournal@1105service.com. Links to additional editorial, sales, and publishing contacts can be found here.
Contact the webmaster: [+] Site Feedback [+]

THE Journal

What is your e-mail address?

Do you have a password?