Array web application firewalls provide a flexible and precise tool for securing business-critical resources. Commonly deployed along with load balancing and app delivery solutions, the ASF detects and blocks attacks including the OWASP Top 10, WASC, Layer 7 DDoS, and zero-day attacks with pinpoint accuracy. It ensures continuous security for applications and infrastructure while supporting compliance with security standards including PCI DSS. The ASF web application firewall combines negative and positive WAF models to guard against a range of latest known attacks, security vulnerabilities, automated and manual attacks, and effectively prevent “Zero-day” attacks. Available as physical or virtual appliances, or on your choice of public cloud, the ASF Series is ideal for businesses needing defense in depth against application-level attacks not readily detected by network firewalls, intrusion detection and prevention systems, or network monitoring. It offers smart detection with web threat intelligence and comprehensive threat logging, auto-learning with behavior analysis and dynamic refreshing of defense profiles, and flexible deployment modes including Bridge, Routing, and TAP. Advanced features include pinpoint protection from bot attacks, full security for web traffic using positive and negative models, secure application delivery when deployed with load balancing, and proactive DDoS defense through behavioral analysis. It also provides automatic blocking of zero-day attacks using auto-learning algorithms, hardware SSL acceleration, and web anti-defacement capabilities. Deployment options include software virtual appliances, cloud-native instances on AWS, Azure, and Google Cloud, and high availability hardware appliances with SSL acceleration.

Features & Benefits

• Essential Security for Essential Applications: Secures business-critical resources against OWASP Top 10, WASC, Layer 7 DDoS, and zero-day attacks.
• Combined WAF Models: Integrates negative and positive WAF models to prevent known and unknown (zero-day) attacks.
• Flexible Deployment Options: Available as physical appliances, virtual appliances (VMware, Hyper-V, KVM), or cloud-native instances on AWS, Azure, and Google Cloud.
• Advanced Threat Detection & Prevention: Features smart detection, auto-learning, bot attack identification, proactive DDoS defense, and automatic zero-day attack blocking.
• Performance & Compliance: Includes hardware SSL acceleration for performance and supports compliance with standards like PCI DSS.