earthwave | the real-time threat management company

Managed Encrypted Attack Prevention Services

Challenge

By its very nature, information that requires protection via SSL is "critical" data. HTTP is one of the most popular protocols for attackers since it must be made publicly available to be useful. Not only is it important to protect the sensitive data that resides on the Web server itself, but modern e-commerce sites typically access information stored on database servers that live at the very core of the network. Protecting the SSL-enabled Web server from compromise not only safeguards the data local to the Web server, but helps to eliminate a potential attack channel into the heart of the "trusted network". To effectively access data that resides at the core of the network, the Web server must be granted some level of trust through the firewall to the core assets. If the "trusted" Web server is compromised and taken over by an attacker, the trust relationship can be used for penetration of other valuable assets within the network.

Solution

Managed Encrypted Attack Prevention Services provides protection for the SSL-enabled e-commerce infrastructure from attacks against the underlying Web server software via the encrypted SSL tunnel. The earthwave Managed Encrypted Attack Prevention Services is a host platform neutral solution that runs with virtually any SSL-enabled server and utilises advanced Network IPS appliances. By enabling protection at the network level, server resources are conserved for processing of user requests, thereby minimising the complexity and associated fragility of the server environment.

Managed Encrypted Attack Prevention Services is industry's first and only service to securely and proactively protect against both clear-text and encrypted attacks. The advanced, real-time SSL decryption and inspection technology dramatically increases network security coverage by protecting critical e-commerce infrastructure.

Earthwave offers four Service Level options with distinct, quantifiable Service Level Agreements (SLAs) to best meet customer needs and address support level preferences. These unique tiers provide different levels of response time, report content and frequencies, and data storage. Our Security Posture 1 and 2 packages offer excellent service tailored for less complex infrastructures that require basic support, while Security Posture 3 and 4 packages offer customers with complex and stringent requirements a host of customisations, extra features and extra functionality.

And remember, subscribing to Managed Encrypted Attack Prevention Services does not require purchase of hardware or software, study of technical manuals or constant updating of your systems.