skip to Main Content

Signal Sciences named a Visionary in the 2019
Gartner Magic Quadrant for Web Application Firewalls

Stop Web Layer Attacks Before They Start

Web Layer Protection That Works Wherever Your Apps Operate

Web application attacks continue to be the top source of data breaches. But modern applications are not designed and deployed now as they were over a decade ago – but legacy WAF appliances have not kept up: based on defense technology over a decade old that relies on regular expression pattern matching, legacy WAF vendors cannot keep up with the speed of modern software DevOps development and deployment.

Request a Demo View the Data Sheet

Trusted by Leading Companies

Signal Sciences protects 250+ billion production requests per week from over 25,000 applications for industry-leading customers.

One Medical

Why Signal Sciences?

Because Signal Sciences protects any app in any architecture and infrastructure and empowers your teams to both secure your web layer assets and innovate. Our patented dual agent-module design puts application defense where your apps, APIs and microservices operate and scales to meet the demands of the modern web.

With Signal Sciences you get:

Flexible Install Options

Our web protection technology works anywhere in your technology stack, whether in containers, on-prem or in the cloud and installs on average under an hour.

Central Management
& Unified Views

Create unparalleled reporting and alerting feedback loops for your security, development and operations teams, across your entire footprint.

Web Layer Asset Protection

Any combination of infrastructure and architecture: cloud provider, datacenter, web server, load balancer, language, or container orchestration framework.

Signal Sciences named a Visionary in the 2019 Gartner Magic Quadrant for Web Application Firewalls

Gartner Magic Quadrant
Gartner Magic Quadrant
Gartner Peer Insights

Protect Applications in Cloud, On-Premise or Hybrid Environments

Signal Sciences has transformed web application protection with a patented, automated solution that protects both cloud-native and legacy applications while preventing targeted web layer attacks on any app, API or microservice running in any infrastructure. We offer flexible deployment options—from installing in your web server or alongside your application runtime to reverse proxy–so you can leverage superior protection quickly.

Signal Sciences is the Web Security Force Multiplier

See

Self-serve security data and alerts empower teams to be proactive and solidify their security posture

Secure

Effective protection against web layer attacks with nearly no false positives: 95% of Signal Sciences customers are full blocking mode in production

Scale

Protect critical apps, APIs and microservices running in any environment with no signatures to manage and no impact on app performance

Signal Sciences enables the security team to understand and track malicious activity against our applications keeping our customers safe. After its deployment and configuration there have been zero false positives.

Anson Gomes, Lead Security Engineer, Betterment

Installs Quickly. No Rules Tuning.

Legacy WAF appliances cannot keep up with a dynamic, ever-expanding application footprint and provide little context into why they block web requests. But Signal Sciences was designed to protect the modern applications, API and microservices no matter what architecture or infrastructure they are deployed in:

Signal sciences
next-gen waf
legacy
waf

Blocking Mode enabled

95% in blocking mode for all attacks
Estimated at <10% based on customer feedback

Architecture Compatibility

Same architecture and UI for unified management across all app deployments: web servers; app servers; PaaS; native, hybrid and multi-cloud; on-prem; serverless; containers
Poor for use with cloud CDN
(e.g Incapsula, Akamai Kona)
No unified management across different CDN WAF products

Attack Types

OWASP Top 10 only, Application DoS, Brute force/ATO attacks, Application abuse and misuse, Bad bots
OWASP Top 10 only

Deployment Time

Average is 62 minutes
(record time is under 1 minute)
Months

Enables DevOps

Full alert details available to DevOps and security via Slack, Jira, Pagerduty, Splunk, and dozens more
Rarely used or accessed outside security, poor toolchain intergrations

Virtual Patching

PCI 6.6 Compliance

Next-Gen Protection for Your Apps, APIs and Microservices

Accurate, Effective, Scalable: Stop Attacks Before They Happen

  • 95% of Signal Sciences customers user our technology in full blocking mode in production
  • Real-time, automated security stops advanced web layer attacks beyond OWASP Top 10: account takeovers, bad bots, application denial of service, and more
  • Our technology automatically scales with your deployments in real time

Make Strategic Decisions With Actionable Data

  • Provides detailed insights into your most attacked applications and functionality, including type of attack, time of attack, and point of origin
  • Get visibility into anomalous web request traffic
  • App teams know exactly when there’s a meaningful problem to address so your security team can easily prioritize their efforts

Integrates With Your Current Security and Operations Processes

  • Installs on average under 60 minutes (legacy WAFs can take weeks and months to deploy)
  • Access actionable data easily via unified management console
  • Alerts your team via popular DevOps tools like Slack, JIRA, Splunk and PagerDuty.

App Security With Fast Time-to-Value:

  • Most installs are under an hour and our Cloud WAF deployment takes only minutes
  • Meet your PCI 6.6 compliance requirements
  • Requires no tuning, virtually no performance degradation, and exceptionally elastic
Back To Top