NSFOCUS

Company:

NSFOCUS

Application Name:

ADS

Assessment Technique(s):

Static Binary Analysis

Assurance Level:

AL4 (High) Exploitation causes serious brand damage and financial loss with long term business impact

VerAfied Since:

7/27/2012

Application Description:

Consistent with its position as a global leader in active perimeter security, NSFOCUS's Anti-DDoS System (ADS) is designed to defend against damaging DDoS attacks and is suitable for any size enterprise from small companies and mid-size companies to carrier-class providers. The company's ADS defends and cleans the traffic to allow critical business functions to continue, enabling normal business operations even under the most aggressive attack.

View Details

In its reviewed state, the the NSFOCUS's Anti-DDoS System (ADS) met or exceeded the security score outlined in the Veracode Risk Adjusted Verification Methodology for an application at the assurance level specified above. Veracode’s risk adjusted verification methodology is based on respected industry standards including MITRE’s Common Weakness Enumeration (CWE) for classification of software weaknesses and FIRST’s Common Vulnerability Scoring System (CVSS) for severity and ease of exploitability and NIST'sdefinitions of assurance levels.

Company:

NSFOCUS

Application Name:

Web Application Firewall

Assessment Technique(s):

Dynamic Analysis

Assurance Level:

Very High: Mission critical for the business.

VerAfied Since:

2/10/2014

Application Description:

NSFOCUS Web Application Firewall (WAF) is a COMPLETE Web security solution which features coordinated blacklist and whitelist protection, the integration of multiple Web detection techniques, and mature DDoS mitigation mechanisms. WAF has been designed to prevent diverse Web attacks, including the OWASP TOP10. WAF works in IPV4, IPV6, and hybrid environments, without any impact on the availability of Web services. The WAF solution offers deployment mode options to align with the security and budget needs of each client. Options include transparent in-line deployment, out-of-path deployment, and cloud-based deployment.

WAF ensures security for Web applications and relevant data via its multi-layer security mechanism. Moreover, WAF lowers the risk of data leaks while supporting the continued availability of normal Web services. WAF is another NSFOCUS solution that thoroughly protects your Web servers and applications from both existing and prospective security threats.
View Details

 

In its reviewed state, the NSFOCUS Web Application Firewall met or exceeded the security score outlined in the Veracode Risk Adjusted Verification Methodology for an application at the assurance level specified above. Veracode’s risk adjusted verification methodology is based on respected industry standards including MITRE’s Common Weakness Enumeration (CWE) for classification of software weaknesses and FIRST’s Common Vulnerability Scoring System (CVSS) for severity and ease of exploitability and NIST's definitions of assurance levels.

 

 

While every precaution has been taken in the preparation of this document, Veracode, Inc. assumes no responsibility for errors, omissions, or for damages resulting from the use of the information herein. Due to the nature of software security testing, the lack of discoverable flaws does not mean the software is 100% secure.