skip to Main Content

Next-Generation Web Application Firewall

“Hands down best WAF product I’ve ever used.”
– Security Engineer, Services Industry

“Best immediate, out of the box value I’ve ever seen from a vendor/product”
– Sr. Vice President, Manufacturing Industry

Why Our Customers Love Us:
Our next-gen WAF using patented SmartParse technology results in fast, accurate decisioning. Easy install options for almost any infrastructure means fast time to visibility, value, and protection.

See why companies of all sizes are choosing Signal Sciences for their web application protection. Request a demo today!

REQUEST A DEMO

Protect
999 %
of customers in full blocking mode IN PRODUCTION
Smile
999 /5
OF CUSTOMERS WHO TRY US, BUY US
999 K+
APPLICATIONS PROTECTED (PER MONTH)
999 +
HYBRID AND MULTI-CLOUD PLATFORMS SUPPORTED

Trusted by Leading Companies

Signal Sciences protects trillions of production requests per month across thousands of websites & applications for industry-leading customers.

Duo
Starbucks
Betterment
WeWork logo
Under Armour logo
Datadog logo
Starbucks

Top Web Application Firewall Vendors Compared

Signal SciencesF5 WAFAkamai KonaImperva IncapsulaAWS WAFCloudflare WAF
Two time winner of Gartner Peer Insights Customer's Choice for Web Application Firewalls2019
2020
-----
Gartner Peer Insights Willingness to Recommend100%92%85%70%94%91%
Gartner Peer Insights Average Score (out of 5)5.04.54.54.44.54.4
Protects beyond the OWASP Top 10, including Account Takeover/Credential Stuffing, Malicious Bots, API Security, rate Limiting and DDoSFull coverageLimited coverageLimited coverageLimited coverageLimited coverageLimited coverage
Number of customers in full blocking mode95%Estimated 10-15%*Estimated 10-15%*Estimated 10-15%*Estimated 10-15%*Estimated 10-15%*
PCI 6.6 compliant
Enables Virtual Patching for
fast protection from CVE’s
-
Time to deploy in full blocking mode< 1 hourDaysMonthsMonthsWeeksDays
Full API Support----
Flexible deployment options across cloud, on-prem, containers, and APIs-----
Does not require full time employees, engineering time, and/or expensive managed services for false positive and/or ongoing tuning-----
Real-time visibility into attacks and blocking decisioning-----

*Gartner Peer Insights data as of February 10, 2020
*Estimated full blocking mode based on feedback from Signal Sciences customers who previously operated a legacy WAF appliance

Top 10 Criteria for Choosing a Web Application Firewall (WAF)

Not all web application firewalls are created equal, especially those based on antiquated technology developed at the outset of Web 1.0. Here are key considerations for decision-makers evaluating WAFs to ensure today’s investment is futureproofed.

  1. Flexible deployment options across infrastructures: A WAF should have the versatility to deploy in any architecture and any infrastructure, from web servers to containers to service mesh.
  2. Low false positives: Legacy WAFs generate a high volume of false positives. Choose a next-gen WAF that uses thresholding to make intelligent decisions and reduces false positives.
  3. No dedicated headcount and low total cost of ownership: Choose a WAF that uses thresholding for low false positives and does not require a full time employee or consultant dedicated to constantly tuning regex pattern matching rules.
  4. Deploys in one hour or less: It used to take months to install a WAF. A next-gen WAF can be installed and in full blocking mode in as little as one hour or less.
  5. Integrates with all major DevOps tools: A WAF should show all DevOps stakeholders how requests are impacting their app and send that data to the tools they already use, like Splunk, Slack, PagerDuty, Datadog, or Jira.
  6. Enables Virtual Patching: Choose a WAF that supports virtual patching of critical vulnerabilities like CVEs for immediate defense while the vendor develops a permanent fix.
  7. Real-time visibility into attacks and blocking decisioning: Your WAF should readily surface the attacks used against your apps to help your engineering and security teams prioritize the most critical code changes.
  8. Detects and protects against all key web attack types: Make sure your WAF has the ability to reliably detect and block all modern web attacks, including App DoS, account takeovers, business logic attacks, OWASP Top 10 and bot attacks.
  9. High performance and reliability for all your apps and APIs: While your WAF is in full blocking mode, your application should function as if the WAF wasn’t even there. Ask for key WAF performance metrics, including uptime and availability.
  10. Checks PCI and other compliance boxes: Ensure your WAF provider has taken the necessary steps to meet rigorous regulatory frameworks and achieved key standards to stay compliant, including HIPPA, SOC 2, and GDPR.

Being able to answer all of these questions is one of the key reasons that next-gen WAFs have emerged and replaced legacy WAFs. Ensure your organization makes a futureproof investment by choosing a WAF that not only provides fast time to value, but will continue to do so into the future however your organization scales its applications and APIs.

To see how Signal Sciences can fit your web application security needs, request a demo today.

Analyst report: Understanding Next-Generation Web Application Firewalls

Analyst report: Understanding Next-Generation Web Application Firewalls

TAG Cyber identifies five key improvement factors that collectively delineate the shift from a legacy WAF to NGWAF.

Signal Sciences named a Customers’ Choice for WAF and has a 5 out of 5 overall rating

Our customers have spoken: Signal Sciences is a highly rated Web Application Firewalls (WAF) vendor. We were named a 2020 Gartner Peer Insights Customers’ Choice for WAF based on detailed end-user testimonials. In addition, we are the only vendor to be named a Customers’ Choice for two consecutive times and have an overall rating of 5 out of 5 stars (as of March 17, 2020, based on 141 verified reviews).

Gartner Peer Insights Customers Choice 2019, 2020

Signal Sciences enables the security team to understand and track malicious activity against our applications keeping our customers safe. After its deployment and configuration there have been zero false positives.

Anson Gomes, Lead Security Engineer, Betterment

Axon
“It’s refreshing to work with a security product that not only provides exceptional security benefits, but also prioritizes performance, reliability, and overall operational manageability.”
Jenner Holden
CISO
Intuit
“All vendors should take a leaf out of the Signal Sciences Professional Services Team’s book; they provide great value and were able to help us accelerate securing our applications much faster than we could on our own.”
Jason Marley
SENIOR SOFTWARE ENGINEER
Chef
“Signal Sciences pulls out needles from the haystack in one quick view, and it integrates with all of our ChatOps tooling—it’s powerful. I don’t have to be a security expert to understand what’s going on.”
Ben Rockwood
DIRECTOR OF IT & OPERATIONS
One Medical
“We have always proactively prioritized security at One Medical. We wanted better visibility into our application layer, which is what led us to choose Signal Sciences.”
Jérémie Meyer de Ville
SENIOR ENGINEERING MANAGER

Designed to Protect the Modern Web

Reliable, Automated Blocking of Attacks

  • Runs directly in your web servers or application code
  • Fail-open architecture keeps your site running fast
  • Proprietary SmartParse requires no tuning or maintenance
Integrations
Site Integrations

DevOps Focused Protection

  • Easily deployed by operations teams
  • Cross-team visibility into metrics, performance and trends
  • Integrated into toolchains for quick access and collaboration

Coverage Across All Threats

  • Immediate blocking of common OWASP attacks
  • Blocks account takeovers, bad bots, application denial of service and more
  • Meets PCI 6.6 requirements, but doesn’t stop there

See It For Yourself. Request a Demo Today!

Back To Top