Web Application Firewall Targets XSRF Attacks


The Mykonos Security Appliance adds improvements in speed, latency, redundancy, and reporting.

Mykonos Software has released an enhanced Mykonos Security Appliance, a next-generation Web application firewall (WAF) designed to protect Web sites from hackers, fraud, and theft. Unlike legacy signature-based systems, Mykonos inserts thousands of detection points into Web apps to identify attackers before they cause damage. The latest release includes a new security processor designed to eliminate cross-site request forgery (XSRF) attacks.

The Mykonos Security Appliance sits between the Web application server and the client. It inserts detection points, or "code-level honey pots," into the Web app, creating virtual landmines that detect and prevent attack attempts. Once it detects a threat, it tags the attacker with a security token that persists after the session ends and is not tied to the attacker's IP address. After the attacker is detected and tagged, the appliance uses an intelligence-gathering process called "Hacker Hoops and Hurdles" to create a profile of the person's skill and threat level. The Mykonos Security Appliance is designed to protect against attacks before they cause damage.

Key features of the latest version of Mykonos Security Appliance include:

  • New security processor designed to eliminate cross-site request forgery (XSRF) or "one-click" attacks;
  • Unique tagging of attackers with a security token to identify and block subsequent attack attempts;
  • Captcha processor to detect bots or other automated scripts;
  • Enhanced reporting management system and security monitor console;
  • SSL configuration for internal communication security and third-party authentication for access to the appliance;
  • Multiple VLAN connections; and
  • Command-line interface for power users.

The latest version also includes significant improvements in speed, latency, redundancy, and reporting.

Mykonos Security Appliance is available now. Further information can be found here.

About the Author

Leila Meyer is a technology writer based in British Columbia. She can be reached at [email protected].

Featured

  • AI toolbox containing a wrench, document icon, gears, and a network symbol

    Common Sense Media Releases Free AI Toolkit, AI Readiness & Implementation Guides

    Common Sense Media has developed an AI Toolkit for School Districts, available to educators free of charge, that provides guidelines and resources for implementing AI in education.

  • elementary school building with children outside, overlaid by a glowing data network and transparent graphs

    Toward a Holistic Approach to Data-Informed Decision-Making in Education

    With increasing access to data and powerful analytic tools, the temptation to reduce educational outcomes to mere numbers is strong. However, educational leadership demands a more holistic and thoughtful approach.

  • three silhouetted education technology leaders with thought bubbles containing AI-related icons

    Ed Tech Leaders Rank Generative AI as Top Tech Priority

    In a recent CoSN survey, an overwhelming majority of ed tech leaders (94%) said they see AI as having a positive impact on education. Respondents ranked generative AI as their top tech priority, with 80% reporting their districts have gen AI initiatives underway, or plan to in the current school year.

  • AI-powered individual working calmly on one side and a burnt-out person slumped over a laptop on the other

    AI's Productivity Gains Come at a Cost

    A recent academic study found that as companies adopt AI tools, they're not just streamlining workflows — they're piling on new demands. Researchers determined that "AI technostress" is driving burnout and disrupting personal lives, even as organizations hail productivity gains.