Next-Generation Web Application Firewall (WAF)
The Signal Sciences NGWAF module provides flexible, scalable, and accurate protection for modern web applications by embedding directly into the web server itself.
Most Signal Sciences customers deploy the web protection platform as a NGWAF module directly into the web server instance. It’s easy to install into the most common and frequently used web application servers (such as NGINX, Apache, and IIS) and uses a safe, fail-open architecture to communicate with the Signal Sciences local agent. This allows for a fast, reliable, and secure asynchronous connection to the Signal Sciences cloud decision engine, ensuring that your customer traffic remains stable—no matter what.
Minutes to Install
Because Signal Sciences provides easy installation packages and configuration management scripts, the NGWAF module is a frictionless install for most deployments. With a simple one-line configuration change, your security is up and running in minutes, providing your web applications, microservices, and APIs instant protection and visibility.
"Dropping in Signal Sciences was trivial and was so easy from an operations perspective!"
Operations Manager @ Yelp Eat24
Extremely High Performance
The Signal Sciences NGWAF module was designed from scratch to be compact, highly performant, and to provide the lowest latency for data passing to the Signal Sciences cloud decision engine. In other words—it’s fast. So fast, in fact, that Signal Sciences is used by extremely performance sensitive customers, including several of the world’s largest mobile gaming companies, precisely because of its patent-pending performance architecture.
The NGWAF module and agent combination are designed to work in tandem, operating as an asynchronous connection to the Signal Sciences cloud. The result is a fail-safe system that allows the decision and enforcement system to work regardless of the connection to the cloud engine. By isolating decisions from enforcement, Signal Sciences handles failures gracefully, keeping your application protected at all times.
Because the Signal Sciences WPP considers data points well beyond basic indicators, it makes exceptionally accurate decisions with a high level of confidence. The WPP looks at individual signals and how they group together into tech patterns over time. We don’t alert on any one signal, because a typical attack isn’t one request—the WPP looks at how individual signals group together and alerts on those attack patterns happening over a period of time, providing you with next-level protection.
The Signal Sciences NGWAF module takes scalability to truly unparalleled levels by embedding directly into every application instance in your environment. As you scale your infrastructure, Signal Sciences scales with you. Our web protection platform handles spikes in traffic, business growth, and rapid infrastructure changes—there are no VMs to resize or larger appliances to deploy. Signal Sciences keeps pace naturally and automatically without any additional capacity planning overhead.
The Signal Sciences NGWAF module supports most modern web servers and can be deployed in any IaaS, PaaS, container, cloud, or traditional data center deployment. Designed to operate wherever your applications live, the Signal Sciences NGWAF is the most scalable web protection system on the market.
Supports modern web servers
- NGINX Plus
Integrates into your DevOps toolchain
- Full API access
- Generic Webhooks
Integrates into your SIEM/SOC
- Any custom tools via a full REST JSON API
Coverage of Modern Attack Types
- OWASP Top 10
- Application DDoS
- Brute force attacks
- Sensitive business logic attacks
- Request rate limiting
- Account takeover attacks
- Bad bots and scrapers
..."If you are looking for a WAF that just works take a look @signalsciences"
...said no-one about Imperva, ever.
Signal Sciences has given us confidence in our application security posture especially for current and future acquisitions. Their architecture and install process make it seamless to start receiving real-time attack telemetry so that we can prioritize our defensive efforts based on actual attacks.
Security Manager @ Yelp
See Signal Sciences in action. We’ve collected webinars, case studies, videos, and more to help you connect with our product and the industry on a deeper level.