Positive Technologies today announced that the PT Application Firewall (PT AF) earned ICSA Labs Web Application Firewall (WAF) certification. ICSA Labs, an independent division of Verizon, performs third party security product testing and awards certification to many of the world’s top security product developers and service providers, helping companies globally identify trustworthy security solutions.
“We take great pride in providing a best-in-class application firewall that is comprehensive, innovative, and secure,” said EVP at Positive Technologies. “ICSA Labs provides objective and thorough security testing and helps organizations find the most trustworthy solutions out there. This certification is therefore a great proof of the robustness and quality of the PT AF.”
PT AF is a comprehensive WAF solution that represents a modern response to the constantly evolving web threat landscape. It combines advanced technologies, including machine learning, real-time user behavior analytics, anomaly detection, and exclusive event correlations as well as proven approaches, including integration with Positive Technologies’ AST solution PT Application Inspector and other security systems, to deliver targeted, proactive, and continuous protection against both known and unknown attacks. This includes defending against the OWASP Top 10, automated and client-side attacks, and zero-days. PT AF also provides a high level of automation and adaptability to ensure quick and easy deployment and configuration as well as efficient day-to-day management with minimum human effort.
The ICSA Labs WAF testing criteria standard is developed in conjunction with ongoing efforts in the WAF industry to provide security managers, application developers, and others deploying web based applications, with confidence in the products organisations use to secure vital web application services from attack and exploitation over the Internet. PT AF met all of the ICSA Labs Web Application Firewall criteria elements during security testing and remains continuously deployed at ICSA Labs where it may be subjected to ongoing security testing measuring product security, compliance and performance.
At Positive Technologies’ request, ICSA Labs added additional tests beyond the baseline set required to meet the ICSA Labs Web Application Firewall testing criteria requirements, exercising special functionality built into PT AF including: malware detection, virtual patching, application level forensics, application layer DDoS, built-in vulnerability scanners, content security policies, robot protection, and both XML and JSON parsing.
