Indusface, a total application security company, launches IndusGuard WAF (Web Application Firewall) that provides real-time monitoring and protection for critical web applications in the cloud and on premise. It is the industry’s first SECaas (security as a service) WAF and fully managed application DDoS (distributed denial-of-service) solution. It assures optimal security, since according to Gartner Inc., 75 percent of cyber attacks occur at the web application layer. It is also the first of its kind in guaranteeing zero WAF false positive with respect to fixing the known vulnerabilities and ensures that no legitimate web traffic is affected. With this launch, Indusface targets the global WAF market which is expected to be $1.2 Billion by 2017, as per Frost & Sullivan.

The Vadodara-based Indusface, founded in 2004, has been empanelled by prestigious independent bodies, PCI ASV and CERT-IN. It has also been recognized by Gartner in 2013 and positioned on the Magic Quadrant for Application Security Testing. The highly efficient, IndusGuard suite of products provides next generation customizable application security and regulatory compliance solutions that are easy to deploy and manage. IndusGuard’s guarantee of zero WAF false positive has led to a positive surge in its adoption during the beta stage by its BFSI customer segment, as the risk of false positive has been hindering the wide scale adoption of WAFs.

IndusGuard WAF applies a set of rules to HTTP conversations to protect web-based applications by combining human intelligence based expert tuning along with application profiling that continually updates with new rules to keep up with application updates and newly emerging threats. It protects against OWASP² Top 10 and WASC³ TC v2.0 (security vulnerabilities as defined by these industry initiatives), along with PCI DSS⁴ compliance assurance. Gartner recommends that security leaders assess the need for WAFs, based on the business impact of each Web application whether it is public facing, partner facing or internal. Further, it recommends that WAF technology should be deployed in combination with application security testing.

“IndusGuard WAF checks off on all boxes and more vis-à-vis Gartner recommendations. Given the increase in the number of cyber attacks on web applications and with the changes taking place so frequently on web applications, it is extremely difficult for security teams to stay ahead of them, whilst ensuring vulnerabilities are kept at bay. IndusGuard WAF offers an excellent line of defense for such applications and provides protection against a wide range of attack vectors. It is is not only an industry first but also a winning combination for customers,” says Ashish Tandon, Chairman & CEO, Indusface.

IndusGuard WAF’s features includes   Zero WAF false positives, continuous application defense,  managed application DDoS Mitigation, 24x7 expert monitoring by certified security experts, intelligent application profiling, centralized portal & real-time reporting in a SAS 70 certified data center, custom rules to protect against business logic vulnerabilities, pay as you go model and  compliance support. The growing dependence on web in their operation set up is driving both large and SMBs to deploy a WAF. While Vertical segments such as BFSI and e-Commerce are leading this adoption, retail, healthcare, education, transportation and government sectors are also expected to deploy WAF.