The Core Technology
Positive Security Model
Teros' application security technology is based on a positive security
model that ensures correct application behavior. The model is
based on HTTP industry standards and best coding practices for
HTML and Java. Application behavior deviating from the positive
security model is treated as potentially malicious and is blocked
by the Teros appliance.
Because it understands good application behavior, the positive
security model does not require attack signatures or pattern
matching techniques to detect and block attacks. It is the only
proven approach delivering "zero day" protection
against unpublished exploits.
Models
Application Behavior
Verifies
Best Practices
Ensures
RFC Compliance
Enforces
Security in Real-Time
Not Signature-Based
Deep Stream Inspection™
Next-generation security requires much more than simple packet-level inspection.
Complete application security requires Deep Stream Inspection technology that
reconstructs all bi-directional communications for each user session. Once reconstructed,
it inspects all content to ensure correct application behavior and the validity
of user and machine inputs.
Teros' innovative Deep Stream Inspection technology is based on multiple core
technologies, including
Bi-directional
analysis of all application traffic
Complete
header and payload inspection
Full
application parsing
Semantic
extraction of relevant application objects
Traffic
sessionization
Adaptive Learning Engine
In addition to delivering out-of-the-box protection against all web-based
threats, the Teros appliances provide the ability to tailor security
policies for any application, including those using client-side
javascript. Teros' 3rd generation Adaptive Learning Engine can
automatically learn the behavior of an application and generate
human-readable policy recommendations. The security manager can
then selectively apply recommendations to strengthen a security
policy and to enable permissible application behavior.
Multi-Layer Cloaking
The Teros web application firewall appliances incorporate Multi-Layer
Cloaking technology to mitigate a hacker's ability to conduct reconnaissance
on a target web-site. It hides sensitive information about an application
environment (e.g., application server, database technology, server
operating system, internal domain naming, etc.) making it much
more difficult for an attacker to devise an effective attack strategy
and exploit known vulnerabilities. By cloaking sensitive or revealing
information at multiple communication layers, hackers are denied
valuable intelligence about an application infrastructure, thus
greatly reducing the risk of attack.
FIPS Compliance – the Highest
Level of Security
The Teros appliances can also provide secure SSL key management.
With FIPS-2 Level 3 compliance the Teros solution has the highest
possible level of internal security. Teros is the only multi-function
web application firewall solution delivering FIPS level security
today.
