Fortanix for Imperva

Bolster up your Imperva Cloud Web Application Firewall (WAF) with FIPS 140-2 L3 grade HSM capabilities powered by Fortanix Data Security Manager.

Download Solution Brief

fortanix for imperva

Business Case

From email hacking and mobile malwares to more prominent data breaches—insecure websites and vulnerable web applications have become a de facto standard to commence all types of attacks. As businesses continue to lean on mobile applications and IoT devices to facilitate business interactions, many online transactions occur at the application layer. Attackers often target these applications to reach the sensitive data stored in the backend database—that can be accessed through web applications.

A web application firewall (WAF) protects web applications from a variety of application layer attacks such as cross-site scripting (XSS), SQL injection, and cookie poisoning, among others.

WAFs are important for a growing number of organizations that offer products or services online—this includes mobile app developers, social media providers, and digital bankers. WAFs can help businesses protect sensitive data, such as customer records and payment card data, and prevent leakage.

While it’s important to have a WAF to protect critical information in-transit between the users and the applications, it’s equally important to combine it with other security measures. Such as, securing the encryption key used by WAF when decrypting the TLS HTTPS encryption.

Key Capabilities

  • FIPS 140-2 level 3 certified HSM.
  • Separation of key material from data.
  • Tamper proof audit log of key usage with SIEM integration available.
  • Single pane of glass key and cryptographic policy management.
  • DSM SaaS architecture allows for easy scaling of transactional throughput capability to support any level of load.
  • Highly available with intelligent load balancing built in.

Solution Highlights

  • Certified solution supported by Fortanix and Imperva.
  • DSM SaaS is a cloud native subscription-based solution.
  • Cloud powered with the robust protection of an on-prem solution.
  • Hold Your Own Key solution (HYOK) where there is a regulatory need to ensure keys are separated from your data.
  • Enterprise level access control and audit logging.

Top Benefits

single platform

Single Platform

Fortanix manages data security for multiple public clouds and hybrid environments through a single platform that can scale and cluster between global sites. Allows businesses to seamlessly move data between on-premises and public cloud infrastructures with a single consistent set of cryptographic services and keys.
unified management

Unified Management

Fortanix provides a “single pane of glass” modern, multi-tenant, and intuitive user interface for simplified administration and increased control, including extensive logging and auditing across your entire infrastructure.
devopos and cloud friendly apis

DevOps and Cloud Friendly APIs

KMS supports extensive RESTful APIs, PKCS#11, KMIP, JCE, Microsoft CAPI, and Microsoft CNG. Easily support all existing and new applications, whether operating in public, private, or hybrid cloud.
Scalable platform with automated load-balancing

Scalable platform with automated load-balancing, DR/HA

DSM is built to scale horizontally and vertically as your demand for managing your keys and secrets increases. This is ensured while providing automated load-balancing, fault-tolerance, disaster recovery, and high availability. Fortanix KMS can be deployed globally and for hybrid or multicloud environments.