SolidWall WAF

The main articles are:

• SaaS - History. Philosophy. Development drivers
• Firewall

SolidWall WAF detects targeted attacks on web applications and mobile application backends, protects application business logic from bots and malicious activity by automatically identifying actions, their parameters and restrictions on these parameters, dependencies between actions using interpreted (explaining) machine learning methods.

The solution belongs to the Application Firewall (Web Application Firewall) class and is focused on on-premium implementations for Enterprise companies and cloud implementations for SMB companies. SolidWall WAF seamlessly integrates into the client application's secure development cycle (sSDLC), automates the protection of new application features, and monitors application user behavior.

2023: Obtaining FSTEC certification for compliance with the requirements for firewalls of the fourth protection class

The company's SolidWall WAF Smart Firewall SolidSoft is certified FSTEC to meet firewalls the fourth class of protection requirements. Now the service can use Russian information systems that require mandatory certification of funds. This was information protection Skolkovo Foundation announced on May 3, 2023.

Among the advantages of SolidWall WAF: protection against a large range of threats, including syntactic, logical and brute force attacks, application-level DDoS attacks and unwanted bot activity. The development ensures the security of various classes of web applications, including browser, mobile, API resources and applications built using the WebSocket protocol.

SolidWall WAF has been popular on the market for several years and is successfully replacing its foreign counterparts. Obtaining an FSTEC certificate will further expand the capabilities to use the solution, including when protecting critical information infrastructure and government information systems that are in particular need of protection, said Vyacheslav Zheleznyakov, director of business development at SolidSoft.

SolidSoft has long been in the web application protection market. The volume of the Russian web application firewall market has grown fivefold over the past five years. Instead of creating their own infrastructure, more and more Russian companies are switching to cloud solutions, thus solving import substitution problems. Having received the FSTEC certificate, SolidSoft opened its way to the corporate market, where the secure work of critical infrastructure is very important. The Skolkovo Foundation can now recommend SolidWall products, including for our partners, noted Aleksei Borisov, Director for Acceleration in the Direction of Fuel and Energy Complex and Industry-IT Cluster of the Skolkovo Foundation.

2022

Launch of the cloud service Web application firewall

The company, a developer SolidSoft of to protection web application solutions, has become a partner Yandex Cloud and is launching cloud service the Web application class. firewall Solutions based on the smart network screen SolidWall WAF are already available in. This was Yandex Cloud Marketplace announced Skolkovo Foundation on October 25, 2022.

Illustration: zlonov.ru

SolidWall WAF helps protect critical web resources from external attacks, analyze traffic, and control application use in various scenarios. The product is included in the Unified Register of Russian Computer Programs and Databases.

Cloudy the service is interesting for companies that need to quickly connect protection for web applications, but the associated coordination of resources for placement does not fit into the temporary framework or budget is very limited for this task. If we are talking about organizations that are already actively using cloud technologies, for them the SolidWall WAF service on Yandex Cloud the Marketplace will be the optimal protection tool with flexible settings for most use cases, noted Sergey Lakhin, commercial director of SolidSoft.

SolidWall WAF has detailed models of the operation of the protected application signature and behavioral methods for detecting anomalies. This provides a high degree of protection against simple types of attacks and complex directional actions. Tools for suppressing false positives and application - MLalgorithms help quickly put SolidWall WAF into operation.

Protecting web resources is one of the company's critical security components. When choosing a solution, the customer not only relies on the functionality and technologies used to protect web applications, but also on supported deployment and implementation scenarios. The SolidWall WAF cloud service will allow users to use the WAF class solution in the Russian market with minimal resource costs for the implementation and purchase of licenses, said Oksana Ulyankova, head of promising projects in the field of information security cluster of information technologies of the Skolkovo Foundation.

Features of SolidWall WAF in Yandex Cloud:

• Flexible tariff plans adapted for cloud use.
• Speed and ease of deployment, increased availability and fault tolerance in IaaS format.
• Efficiency of use in both simple and complex scenarios, in companies of different sizes in any. industries economies
• Protection against a wide range of threats, including protection against syntactic, logical and brute force attacks, 0-day and 1-day attacks, application-level DDoS attacks, and unwanted bot activity. Countering online fraud and controlling the actions of legitimate users.
• Providing security for various classes of web applications, including classic browser, mobile applications, API resources, applications built using the WebSocket protocol.
• Business logic analysis functions that allow you to implement business-oriented scenarios, more fine-tune protection, simplify the work of analysts in the web interface, export data to external systems.
• Fully interpreted and corrected machine learning results that simplify solution implementation and maintenance.
• A wide range of professional solution support services from SolidSoft and its partners.

Availability as a fault-tolerant cloud service on the Ngenix platform

On February 3, 2022, Web Resource NGENIX provider cloudy Acceleration and Protection Solutions and Resident Skolkovo Foundation (), The ВЭБ.РФ Group SolidSoft a developer of Web Application Protection Solutions, announced a collaboration. The companies intend to join forces to provide access to SolidWall WAF functions in the form of a fault-tolerant cloud service NGENIX platform for customers from key segments for both companies, including electronic, and trade state financial organizations.

The partnership with SolidSoft is another step that NGENIX is strengthening its position on, PaaS market increasing the diversity of tools available in the cloud to accelerate, protect, and resiliency web resources. Over the past six years, NGENIX has been consistently developing the cloud direction: cyber security in addition to protection against - DDoSattacks on L3/L4 and L7, two WAF solutions from other leading vendors are already available on the NGENIX platform, as well as flexible management of query processing logic based on their parameters (Edge Logic Rules).

On the distributed infrastructure of NGENIX with points of presence in all federal districts of the Russian Federation, smart caching and balancing algorithms are implemented, providing speed and fault tolerance at high and peak loads. The NGENIX Distributed Cloud enables customers to take advantage of WAF, along with other platform capabilities, thereby reducing data distribution complexity and total cost of ownership while improving resiliency. Along with cyber protection services, NGENIX offers customers more than 20 plug-in services to speed up web page loading, DNS management, video content delivery, data caching management, and cloud storage.

SolidWall WAF is one of the products of the Web Application Firewall the Russian development class. The SolidWall WAF service is focused on protecting web mobile applications and with any specificity and level of complexity - personal accounts, trade sites, systems, RBS corporate portals state information systems and others. The use of the most detailed models of operation of the protected application along with signature and behavioral methods of anomaly detection provide a high degree of protection against both simple types of attacks and complex directional influences. Tools for early suppression of false positives together with the use of algorithms make it machine learning possible to quickly put WAF into operation.

Features of the SolidWall WAF solution:

• a set of use cases, including protection of web and mobile applications, APIs, applications built using the websocket protocol, from bot attacks, directed attacks, exploitation of vulnerabilities;
• Business Logic Analysis features that allow you to fine-tune your protection, simplify your Web-based analytics, or export to other systems for deeper analysis.
• protection against bots and overkill attacks;
• included in the Unified Register of Russian Programs for Electronic Computers and Databases.

"Cooperation with NGENIX opens up opportunities for SolidSoft and its products. The partnership will strengthen the service direction of sales and increase the presence of the SolidWall WAF solution in the cloud segment, and NGENIX customers will receive a flexible security tool suitable for most use cases. This is relevant when many customers, both commercial and public, go through the digital transformation stage and pay increased attention to the security of critical applications, " commented Sergey Lakhin, Commercial Director of SolidSoft

"NGENIX is constantly working with the market to offer in-demand cloud services for professional IT teams responsible for fast and stable web resources. With SolidSoft, we are expanding the range of cybersecurity solutions available to customers and strengthening the offer in terms of protection against bots, hacks and cyber attacks - problems that are most pressing in the strategically important market segments for us. " emphasized Konstantin Anokhin, Commercial Director of NGENIX

2021: Inclusion in the Unified Register of Russian Programs

The network screen for protecting SolidWall applications, developed by a resident of the Skolkovo Foundation by SolidSoft, is included in the Unified Register of Domestic Software (software). The Fund announced this on February 9, 2021.

SolidWall WAF is a specialized solution for protecting critical web resources and applications from external attacks, unauthorized use and fraud. The firewall controls application scenarios, minimizes the possibility of exploiting business logic errors, and provides protection at low cost of ownership.

The inclusion of SolidWall WAF in the Unified Register of Russian Programs is good news for our customers and partners. This means that the product is exempt from VAT. Thus, we avoided a 20% rise in license prices and ensured a competitive price level. In addition, inclusion in the Register allows you to use SolidWall WAF to protect web applications of government organizations and companies with state participation. " said Mikhail Plakhuta, co-founder and CEO of SolidSoft

The register of domestic software is a basic guideline for buyers and suppliers in the process of making decisions on introducing products into the infrastructure of state organizations. We provide legal support to Skolkovo residents, accompany them at the stages of inspections and examinations, and negotiate at the level of departments and ministries. And we are glad that our residents are increasing the volume of orders among government organizations by introducing innovative solutions, including in the Web Application Firewall segment. noted Mikhail Stugin, Head of Information Security at Skolkovo Foundation

SolidWall WAF combines several protection mechanisms at once against typical and targeted cyber attacks. It builds a model of interaction between a protected application and its legitimate users. Machine learning algorithms increase the likelihood of detecting attacks. The built-in signature set provides protection from the moment the WAF is installed, without waiting for the firewall to be trained on sufficient traffic. SolidWall WAF can be integrated with SIEM, analytical and antivirus systems, as well as external systems using Syslog, SNMP, SQL, REST API, ICAP standards.

SolidWall WAF stores suspicious HTTP transactions and the results of their processing, which ensures high quality incident investigations and facilitates reporting. The false positive suppression system enables analysts to focus on significant events. With increased security policy requirements, all data can be stored locally within an organization's perimeter.

2017

SolidWall WAF Assignment

SolidWall WAF was originally developed as a solution that can understand the functioning of protected applications using flexible hierarchical models that reflect aspects of the implementation of application business logic and characteristic signs of normal interaction between the user and the application, the developers said. This allows you to prevent traditional attacks, detect specific impacts on application business logic and identification and authentication mechanisms, and control the actions of web application users, thereby providing protection against both external and internal threats.

As of November 2017, SolidSoft is focused on protecting critical applications with complex business logic - public information resources and services, B2B sites, remote customer service systems, internal corporate intranet systems, government interdepartmental interaction systems, production management technology systems, etc.

SolidWall Cloud WAF - StormWall and SolidSoft collaboration

The resident Skolkovo Foundation IT Cluster SolidSoft and his partner - StormWall both companies specialize in the development of web application protection tools - introduced in October 2017 a cloud service consisting of StormWall's DDoS attack protection product integrated with SolidWall Cloud WAF - firewall the application level, as well as professional services for monitoring and responding to incidents.

The joint solution not only guarantees the availability of critical web resources, protecting against distributed denial of service attacks, but also provides protection against hacker attacks.

The main advantages of the SolidWall Cloud WAF service: · Cloud implementation of the solution - the package does not require the installation and maintenance of expensive hardware and software. · Low cost of integration into existing IT infrastructure · Integration with StormWall DDoS protection makes it easy to protect the site from all vectors of hacker attacks. · Geographic distribution: WAF nodes are installed in Moscow, Frankfurt and Washington, which significantly reduces delays in processing requests. · Use of modern web application presentation models (MVC, SOA, REST, API-centric). · Support threat protection at the application business logic level. · Technical support and incident advice are included in the subscription price. · The package integrates mechanisms for protecting against false positives, and special machine learning algorithms are used .

The number of web applications used in various industries - from business to education - is constantly growing. As a rule, they implement business-critical logic and are associated with other corporate systems, so their protection against attacks is an urgent need.

Web applications are one of the main targets of attackers. According to the second quarter of 2017, attacks on web applications are in the first place among the "technological" causes of information security incidents, following immediately after hardware failures, insider actions, theft or loss of devices and are ahead of even DDoS attacks. At the same time, the damage from such incidents can be very serious.

For example, during the second quarter of 2017, about 218 million web application attacks occurred on hosting sites in the United States, and the average damage from attacks was $17 million.

At the same time, the total damage from hacker attacks around the world amounted to from 300 billion to one trillion dollars, which is from 0.4 to 1.5% of global GDP.

Studies of 600 web applications have shown that developers are still unable to fix the most common vulnerabilities in the code that allow attacks such as SQL injection and cross-site scripting (XSS). Application developers do not have enough experience or attention to information security issues, and do not have enough time to release a secure product.