BIG-IP® APPLICATION SECURITY MANAGER™

Get the fastest, most comprehensive, and scalable web application firewall

Some of the most serious security threats come from cyber attacks, such as denial of service (DoS) and SQL injection, that target vulnerabilities in enterprise applications. New interactive web 2.0 applications have introduced JSON payload in AJAX widget web threats that traditional solutions are blind to. Automated scanners and bot programs web scrape site data for replication, diluting brand equity. Yet conventional firewalls and intrusion-detection/prevention systems don’t detect all of these threats, which are often difficult and costly to mitigate. Security regulations, including PCI DSS, require that organizations use application firewalls to protect against these attacks.

BIG-IP Application Security Manager (ASM) ensures application availability by delivering comprehensive, flexible protection from attacks for web applications deployed in physical, virtual, or private cloud environments. BIG-IP ASM employs unique technology that detects if your applications are being attacked and protects them from vulnerabilities such as Layer 7 DoS and DDoS (distributed denial of service), SQL injection, JSON payload attacks in AJAX widgets, and web scraping of valuable information while shielding your sites from copy and reuse. BIG IP ASM provides a complete attack expert system, advanced visibility and reporting, and compliance for key regulatory mandates.

BIG-IP ASM can help your organization quickly pass a security audit without requiring changes to the application code. PCI compliance reports provide an executive summary of requirements and recommendations for bringing your application environment into compliance.

Industry-leading performance
BIG-IP ASM is the fastest application delivery security product on the market, and it includes an integrated XML firewall. It combines application optimization; acceleration technologies such as fast cache, compression, SSL offload, and TCP optimization; and other performance advantages of F5’s TMOS operating system to improve performance while increasing security posture. This offloads the servers, improves the user experience, and consolidates the footprint in the data center for easier management. BIG-IP ASM can also secure FTP and SMTP traffic and provide authentication. In addition, it participates in iApp application-centric deployment for integrated security services and fast application security implementation.

Easy implementation and maintenance
With BIG-IP ASM, available as a physical or virtual edition, application security is easy to implement and manage. Automatic policy synchronization between platforms in a group delivers application security throughout data centers and in a private cloud. It includes specific, built-in, validated application security policies for common applications as well as an automatic policy-building engine that can quickly adapt to application updates. BIG-IP ASM helps you rapidly and virtually patch web application vulnerabilities during or after a software development lifecycle. To keep you up to speed on the latest web threats as they grow in number and complexity, BIG-IP ASM includes an attack expert system that provides on-the-spot knowledge of violations and attacks. This system is delivered on a wide variety of special-built hardware platforms to support throughput ranges of all requirements.

Certified and award-winning application delivery security
BIG-IP ASM has been rigorously tested and has received ICSA Web Application Firewall Certification. BIG-IP ASM has been deployed in more than 91 of the Fortune 500 companies and received SC Magazine's 2010 Reader Trust Award for Best Web Application Security solution.