Next-Generation Web Application Firewall

“Hands down best WAF product I’ve ever used.”
– Security Engineer, Services Industry

“Best immediate, out of the box value I’ve ever seen from a vendor/product”
– Sr. Vice President, Manufacturing Industry

Why Our Customers Love Us:
Our next-gen WAF using patented SmartParse technology results in fast, accurate decisioning. Easy install options for almost any infrastructure means fast time to visibility, value, and protection.

See why companies of all sizes are choosing Signal Sciences for their web application protection. Request a demo today!

Request a Demo

Signal Sciences will automatically protect you against the OWASP Top 10, bad bots, account takeovers, and more.

999 %

of customers in full blocking mode IN PRODUCTION

999 /5

OF CUSTOMERS WHO TRY US, BUY US

999 K+

APPLICATIONS PROTECTED (PER MONTH)

999 +

HYBRID AND MULTI-CLOUD PLATFORMS SUPPORTED

Trusted by Leading Companies

Signal Sciences protects trillions of production requests per month across thousands of websites & applications for industry-leading customers.

Top Web Application Firewall Vendors Compared

Request a Demo	Signal Sciences	F5 WAF	Akamai Kona	Imperva Incapsula	AWS WAF	Cloudflare WAF
Two time winner of Gartner Peer Insights Customer's Choice for Web Application Firewalls	2019 2020	-	-	-	-	-
Gartner Peer Insights Willingness to Recommend	99%	89%	81%	81%	90%	91%
Gartner Peer Insights Average Score (out of 5)	5.0	4.5	4.5	4.4	4.5	4.4
Protects beyond the OWASP Top 10, including Account Takeover/Credential Stuffing, Malicious Bots, API Security, Rate Limiting and DDoS	Full coverage	Limited coverage	Limited coverage	Limited coverage	Limited coverage	Limited coverage
Number of customers in full blocking mode	95%	Estimated 10-15%^*	Estimated 10-15%^*	Estimated 10-15%^*	Estimated 10-15%^*	Estimated 10-15%^*
PCI 6.6 compliant	✔	✔	✔	✔	✔	✔
Enables Virtual Patching for fast protection from CVE’s	✔	✔	✔	✔	-	✔
Time to deploy in full blocking mode	< 1 hour	Days	Months	Months	Weeks	Days
Full API Support	✔	-	-	-	-	✔
Flexible deployment options across cloud, on-prem, containers, and APIs	✔	-	-	-	-	-
Does not require full time employees, engineering time, and/or expensive managed services for false positive and/or ongoing tuning	✔	-	-	-	-	-
Real-time visibility into attacks and blocking decisioning	✔	-	-	-	-	-

^*Gartner Peer Insights data as of May 27, 2020
^*Estimated full blocking mode based on feedback from Signal Sciences customers who previously operated a legacy WAF appliance

Top 10 Criteria for Choosing a Web Application Firewall (WAF)

Not all web application firewalls are created equal, especially those based on antiquated technology developed at the outset of Web 1.0. Here are key considerations for decision-makers evaluating WAFs to ensure today’s investment is futureproofed.

Flexible deployment options across infrastructures: A WAF should have the versatility to deploy in any architecture and any infrastructure, from web servers to containers to service mesh.
Low false positives: Legacy WAFs generate a high volume of false positives. Choose a next-gen WAF that uses thresholding to make intelligent decisions and reduces false positives.
No dedicated headcount and low total cost of ownership: Choose a WAF that uses thresholding for low false positives and does not require a full time employee or consultant dedicated to constantly tuning regex pattern matching rules.
Deploys in one hour or less: It used to take months to install a WAF. A next-gen WAF can be installed and in full blocking mode in as little as one hour or less.
Integrates with all major DevOps tools: A WAF should show all DevOps stakeholders how requests are impacting their app and send that data to the tools they already use, like Splunk, Slack, PagerDuty, Datadog, or Jira.
Enables Virtual Patching: Choose a WAF that supports virtual patching of critical vulnerabilities like CVEs for immediate defense while the vendor develops a permanent fix.
Real-time visibility into attacks and blocking decisioning: Your WAF should readily surface the attacks used against your apps to help your engineering and security teams prioritize the most critical code changes.
Detects and protects against all key web attack types: Make sure your WAF has the ability to reliably detect and block all modern web attacks, including App DoS, account takeovers, business logic attacks, OWASP Top 10 and bot attacks.
High performance and reliability for all your apps and APIs: While your WAF is in full blocking mode, your application should function as if the WAF wasn’t even there. Ask for key WAF performance metrics, including uptime and availability.
Checks PCI and other compliance boxes: Ensure your WAF provider has taken the necessary steps to meet rigorous regulatory frameworks and achieved key standards to stay compliant, including HIPPA, SOC 2, and GDPR.

Being able to answer all of these questions is one of the key reasons that next-gen WAFs have emerged and replaced legacy WAFs. Ensure your organization makes a futureproof investment by choosing a WAF that not only provides fast time to value, but will continue to do so into the future however your organization scales its applications and APIs.

To see how Signal Sciences can fit your web application security needs, request a demo today.

Analyst report: Understanding Next-Generation Web Application Firewalls

TAG Cyber identifies five key improvement factors that collectively delineate the shift from a legacy WAF to NGWAF.

Get Your Copy

Gartner Voice of the Customer Report Signal Sciences

Read The Report

Signal Sciences named a Customers’ Choice for WAF and has a 5 out of 5 overall rating

Our customers have spoken: Signal Sciences is a highly rated Web Application Firewalls (WAF) vendor. We were named a 2020 Gartner Peer Insights Customers’ Choice for WAF based on detailed end-user testimonials. In addition, we are the only vendor to be named a Customers’ Choice for two consecutive times and have an overall rating of 5 out of 5 stars (as of March 17, 2020, based on 141 verified reviews).

Gartner Peer Insights Customers Choice 2019, 2020

Signal Sciences enables the security team to understand and track malicious activity against our applications keeping our customers safe. After its deployment and configuration there have been zero false positives.

Anson Gomes, Lead Security Engineer, Betterment

“It’s refreshing to work with a security product that not only provides exceptional security benefits, but also prioritizes performance, reliability, and overall operational manageability.”

Jenner Holden
CISO

“All vendors should take a leaf out of the Signal Sciences Professional Services Team’s book; they provide great value and were able to help us accelerate securing our applications much faster than we could on our own.”

Jason Marley
SENIOR SOFTWARE ENGINEER

“Signal Sciences pulls out needles from the haystack in one quick view, and it integrates with all of our ChatOps tooling—it’s powerful. I don’t have to be a security expert to understand what’s going on.”

Ben Rockwood
DIRECTOR OF IT & OPERATIONS

“We have always proactively prioritized security at One Medical. We wanted better visibility into our application layer, which is what led us to choose Signal Sciences.”

Jérémie Meyer de Ville
SENIOR ENGINEERING MANAGER

Designed to Protect the Modern Web

Reliable, Automated Blocking of Attacks

Runs directly in your web servers or application code
Fail-open architecture keeps your site running fast
Proprietary SmartParse requires no tuning or maintenance

DevOps Focused Protection

Easily deployed by operations teams
Cross-team visibility into metrics, performance and trends
Integrated into toolchains for quick access and collaboration

Coverage Across All Threats

Immediate blocking of common OWASP attacks
Blocks account takeovers, bad bots, application denial of service and more
Meets PCI 6.6 requirements, but doesn’t stop there

See It For Yourself. Request a Demo Today!