FortiWeb 概述
駭客最容易透過未受保護的網站應用程式進入網路,此類應用程式還容易遭受各種類型的攻擊。FortiWeb 的多層關聯方法可保護您的網站應用程式免受 OWASP十大網路安全風險等攻擊。再結合 FortiGuard Labs 的網站應用程式安全服務,您將免受最新應用程式漏洞、殭屍網路、可疑 URL 的威脅,使用專門的啟發式偵測引擎,您的應用程式將可以防禦諸如 SQL 注入、跨站點指令碼撰寫、緩衝區溢位、Cookie 中毒、惡意來源和 DoS 攻擊等複雜威脅。
FortiWeb 新聞
FortiWeb 軟體版本 5.9.0
2018 年 3 月 19 日:FortiWeb 發佈的 5.9 版軟體擁有幾個重要特徵,如在 Azure 上對 FortiWeb VM 提供按需支援、為 AV 提供 FTP 附件掃瞄以及沙箱威脅偵測。 請查閱發行說明。
適用於 Azure Marketplace 的 FortiWeb 按需購買版本
2018 年 3 月 12 日:FortiWeb 虛擬機現在可支援自帶授權 (BYOL) 與按需(即用即付)購買。請查閱 Azure Marketplace 清單尋找 FortiWeb。
FortiWeb 視訊
FortiWeb 產品詳情
無論是簡單滿足合規標準還是為關鍵任務託管應用程式提供防護,FortiWeb 的網站應用程式防火牆都能提供進階功能,防護網站應用程式免受已知威脅和零時差威脅。FortiWeb 採用進階多層關聯方法為您的內外部網站應用程式提供完整的安全防護,讓您遠離 OWASP 十大安全威脅和諸多其他威脅。FortiWeb 的核心是基於行為的偵測引擎,可以智能偵測偏離正常形式的威脅,在攻擊者做出破壞前進行阻止。
功能與優點
成熟的網站應用程式保護
FortiWeb 可防禦 OWASP 十大安全威脅、DDoS 攻擊以及諸多其他威脅,為您的關鍵任務網站應用程式提供保護
基於行為的偵測
除了常規的特徵碼更新和許多其他的防禦層之外,FortiWeb 基於行為的應用程式學習可以偵測到零時差攻擊
Security Fabric 整合
FortiGate 防火牆與 FortiSandbox 的整合可防禦進階持續性威脅
進階可視分析
FortiWeb 的可視報告工具可提供對攻擊來源、類型與其他元素的詳細分析報告,此報告提供的見解是其他 WAF 解決方案無法提供的
減少誤報工具
這些進階工具最大程度地減少了對原則與異常清單的日常管理,以保證只有不受歡迎的流量被拒之門外
基於硬體的加速
FortiWeb 提供行業領先的受保護 WAF 處理量和極為迅捷的安全流量加密/解密服務
FortiWeb 型號與規格
FortiWeb 有眾多不同型號和各種不同形式,無論您是想要入門級的硬體設備還是可適應最新雲端環境的複雜 VM,都可以滿足。
吞吐量 |
2.5 Mbps |
| 港口 | 4x GE RJ45 |
吞吐量 |
250 Mbps |
| 港口 | 4x GE RJ45、4x GE SFP |
吞吐量 |
480 Mbps |
| 港口 | 4x GE RJ45 (2x bypass)、4x GE SFP |
吞吐量 |
1.3 Gbps |
| 港口 | 2x 10 GE SFP+、2x GE RJ45、4x GE RJ45 bypass、4x GE SFP |
吞吐量 |
2.5 Gbps |
| 港口 | 2x 10 GE SFP+、4x GE RJ45 bypass、4x GE SFP |
吞吐量 |
5 Gbps |
| 港口 | 4x 10 GE SFP+、8x GE RJ45 bypass、4x GE SFP |
吞吐量 |
20 Gbps |
| 港口 | 8x GE RJ45 bypass、4x GE SFP、2x 10G SFP+ bypass、2x 10G SFP+ |
吞吐量 |
2.5 Mbps |
| vCPU | 1 |
吞吐量 |
100 Mbps |
| vCPU | 2 |
吞吐量 |
250 Mbps |
| vCPU | 4 |
吞吐量 |
1 Gbps |
| vCPU | 8 |
如果您已經是 FortiWebCloud 的客戶,請按一下此處存取服務。
適用於 FortiWeb 的 FortiGuard 安全服務
FortiWeb 採用多種 FortiGuard 安全服務來保護網站應用程式免受攻擊。這些年度訂閱可以單獨購買,也可以與您的 FortiWeb 解決方案一起購買。
Web Application Security
FortiGuard Web Application Security uses information based on the latest application vulnerabilities, bots, suspicious URL patterns and data-type patterns, and specialized heuristic detection engines, to ensure your web applications remain safe from application-layer threats.
IP 聲譽評等 & 預防殭屍網路安全服務
FortiGuard IP 聲譽評等服務從 Fortinet 分佈式威脅感測器網路、CERT、MITRE、進行合作的競爭對手以及其他全球資源彙集惡意來源 IP 資料,這些資源共同協作,合力提供關於敵對來源的最新威脅情報。憑藉來自分佈式網路閘道近乎即時的情報,再結合 FortiGuard Labs 的世界級研究,組織可得到更安全的保護並對攻擊實施主動攔截。
FortiSandbox 雲端
FortiSandbox 雲端服務是一個進階威脅偵測解決方案,可執行動態分析以識別先前未知的惡意軟體。FortiSandbox 雲端產生的可執行情報會反饋到網路中的預防控制機制,進而消除威脅。
內容威脅 & 解除
內容威脅 & 解除 (CDR) 功能可即時移除檔案中所有的活動內容,建立一個清潔的平面檔案。所有活動內容都被視為可疑內容並被移除。CDR 可以處理所有入埠檔案,對它們進行解構,然後移除所有不符合防火牆原則的元素。
服務套件組合
標準
為您的網站應用程式提供核心防護服務,包括網站應用程式安全、IP 聲譽評等 & 預防殭屍網路解決方案以及防毒服務。
進階
如果您想要最好的網站應用程式安全保護,可以選擇進階套件組合,其中涵蓋了標準套件組合裡所有的服務,外加 FortiCloud 沙箱服務以及憑證填充攻擊防禦服務。
Data Sheets
Case Studies
Solution Guides
White Papers
Analyst Reports
Webinars
Videos
Training
Product Demos
FortiWeb Cloud WAF as a Service demo
Log into our SaaS portal and explore the many features of our FortiWeb Cloud WAF as a Service. Enjoy comprehensive Web Application Security without the need to manage and maintain appliances or virtual instances.
Access the demoFortiWeb Demo
This full working demo lets you explore the many features of our FortiWeb Web Application Firewall (WAF). You’ll quickly see how FortiWeb easily displays system resource utilization and attack logs, and gives you everything you need in the easy-to-use attack console. Be sure to check out our comprehensive web protection profiles and in-depth reporting.
Complete the form below to access the demo.
Common Criteria
Fortinet products have received NDPP, EAL2+, and EAL4+ based Common Criteria certifications. Common Criteria evaluations involve formal rigorous analysis and testing to examine security aspects of a product or system. Extensive testing activities involve a comprehensive and formally repeatable process, confirming that the security product functions as claimed by the manufacturer. Security weaknesses and potential vulnerabilities are specifically examined during an evaluation. More information on the latest Fortinet Common Criteria Certifications are available below:
ICSA Labs Certified: Antivirus, Corporate Firewall, IPsec, NIPS, SSL-TLS, and Web Application Firewall
FortiGate and FortiWeb products are evaluated against ICSA criteria in 6 popular Certification programs. ICSA Labs manages and sponsors security consortia that provides a forum for intelligence sharing among the leading vendors of security products. In addition, ICSA Labs publishes surveys, security industry studies, and buyer's guides for computer security products.
NSS Labs WAF 2014 SVM
In its first-ever web application firewall testing, NSS Labs reported that the FortiWeb-1000D achieved an overall block rate of 99.85% at $2.77 TCO per protected connection per second that earned the WAF “Recommended” status in their Web Application Firewall Security Value Map.
FortiWeb Ecosystem
FortiWeb provides integration with many leading IT vendors as part of the Fortinet Security Fabric. Below is a list of current FortiWeb Alliance Partners:
Alcide is a cloud-native security leader with the mission to empower DevOps and security teams to manage application and networking security through the intelligent automation of security policies applied uniformly, regardless of the workload and infrastructure.
AWS services are trusted by more than a million active customers around the world – including the fastest growing startups, largest enterprises, and leading government agencies – to power their infrastructures, make them more agile, and lower costs.
Learn more on the Fortinet-AWS alliance
D3 Security's award-winning SOAR platform seamlessly combines security orchestration, automation and response with enterprise-grade investigation/case management, trend reporting and analytics. With D3's adaptable playbooks and scalable architecture, security teams can automate SOC use-cases to reduce MTTR by over 95%, and manage the full lifecycle of any incident or investigation.
DFLabs IncMan SOAR leverages existing security products to dramatically reduce the response and remediation gap caused by limited resources and the increasing volume of incidents. Together with Fortinet, IncMan allows joint customers to respond to security incidents in a faster, more informed and efficient manner.
Thales is a global high technology leader investing in digital and “deep tech” innovations – connectivity, big data, artificial intelligence, cybersecurity and quantum technology. Together with Fortinet, Thales provides advanced security certificate management by the Luna HSM for the encryption and decryption of secure application and session traffic.
Gigamon provides active visibility into physical and virtual network traffic, enabling stronger security, and superior performance.
Google Cloud Platform is a secure, dedicated public cloud computing service operated by Google which provides a range of infrastructure and application services that enable deployments in the cloud. Fortinet provides critical firewalling, advanced security and scalable BYOL protection for elastic compute, container, and machine-learning workloads in Google’s innovative public cloud.
Hewlett Packard Enterprise is an industry-leading technology company that enables customers to go further, faster. With the industry’s most comprehensive portfolio, HPE's technology and services help customers around the world make IT more efficient, more productive, and more secure.
IBM Security offers one of the most advanced and integrated portfolios of enterprise security products and services. The portfolio enables organizations to effectively manage risk and defend against emerging threats.
- Fortinet – IBM Security AppScan Solution Brief
- Fortinet – IBM Security QRadar Solution Brief
- Fortinet FortiGate and IBM QRadar Deployment Guide
- FortiGate App For IBM QRadar Technical Solution Guide
- Fortinet - IBM Resilient Technical Deployment Guide
- Fortinet - IBM Cloud Connector Solution Brief
- Fortinet FortiSOAR Connector for IBM QRadar
LinkShadow Cybersecurity Analytics Platform is a world-leading UEBA and Threat-Hunting Solution Provider. Together with Fortinet, LinkShadow can empower the Security team with cutting-edge Threat Anticipation with Proactive Incident Response, while simultaneously gaining rapid insight into the effectiveness of the existing security investments.
Micro Focus is a global software company with 40 years of experience in delivering and supporting enterprise software solutions that help customers innovate faster with lower risk. Our portfolio enables our 20,000 customers to build, operate and secure the applications and IT systems that meet the challenges of change. We are a global software company, committed to enabling customers to both embrace the latest technologies and maximize the value of their IT investments. Everything we do is based on a simple idea: the fastest way to get results from new technology investments is to build on what you have–in essence, bridging the old and the new.
- Fortinet-Micro Focus Fortify WebInspect Solution Brief
- Fortinet-Micro Focus ArcSight ESM Solution brief
- ArcSight Marketplace
Microsoft is the leading platform and productivity company for the mobile-first, cloud-first world, and its mission is to empower every person and every organization on the planet to achieve more.
Nutanix makes infrastructure invisible, elevating IT to focus on the applications and services that power their business. The Nutanix enterprise cloud platform leverages web-scale engineering and consumer-grade design to natively converge compute, virtualization and storage into a resilient, software-defined solution that delivers any application at any scale.
Oracle offers a comprehensive and fully integrated stack of cloud applications and platform services.
Qualys, Inc. is a pioneer and leading provider of cloud-based security and compliance solutions with over 8,800 customers in more than 100 countries, including a majority of each of the Forbes Global 100 and Fortune 100.
Restorepoint’s solutions help organisations and service providers reduce cost, manage unforeseen risks, and to accelerate change management across their multi-vendor network infrastructures. Using our cost-effective products, customers can quickly automate Network Outage Protection, Compliance Auditing, and Privileged Access Management and to simplify Bulk Change Management.
Splunk Inc. is the market-leading platform that powers Operational Intelligence.
Combining advanced technology with the expertise of its global Threat Research Center (TRC) team, WhiteHat delivers application security solutions that reduce risk, reduce cost, and accelerate the deployment of secure applications and websites.
常見問題解答
IPS 或防火牆能不能為基於 Web 的託管應用程式提供防護?
新一代以及應用程式感知 IPS 防火牆擴展並加強了防護功能、新增了其他功能,但「應用程式感知」的主要功能還是專注於在內網用戶端存取網際網路時對其進行保護/限制,而不是保護內部應用程式免受外部威脅。而網站應用程式防火牆則不同,它們會保護內部網站應用程式免受外部複雜的應用層攻擊。它們提供主動和被動安全模型,並可抵禦當今應用程式的主要威脅(SQL 注入、跨站點指令碼撰寫、URL 存取、CSRF、注入攻擊等等)。
我需要多大的 WAF?
決定 WAF 大小的因素有許多,請根據應用程式處理量、使用者數量以及需保護的站點數量綜合考慮。我們強烈建議您與 Fortinet 合作夥伴進行諮詢,找到滿足您需求的最佳選擇。
FortiWeb Cloud 與內部 FortiWeb 部署有何區別?
FortiWeb Cloud 是一款「瘦身版」WAF 解決方案,提供被動安全模型規則;而 FortiWeb 平台則是完整版 WAF,主動和被動安全模型都有提供。大部分使用雲端 WAF 的客戶是為了尋求一種無憂型解決方案,以便快速設定並使用,無需進行日常管理。FortiWeb Cloud 提供 FortiWeb 在內部提供的一部分功能,但採用簡單、直接的設定與管理方式來滿足這些需求。
如果我已經有一個安全網路閘道(SWG),我是否還需要一個 WAF?
需要。SWG 可防止組織內使用者存取被感染的外部網站或者託管於組織外部的不良內容。WAF 則保護基於 Web 的託管應用程式免受外部攻擊者發起的攻擊。簡單地說,就是 SWG 對使用者進行保護,而 WAF 對應用程式進行保護。
FortiWeb WAF 與 WAF 在 ADC 上的對比
專用 WAF 設備不會降低效能,另外像 FortiWeb 這樣的設備擁有處理能力,可以對應用程式攻擊執行行為偵測。ADC 上的大部分 WAF 模組僅提供對應用程式的基本 WAF 防護。
FortiWeb 可以對應用程式漏洞進行永久性修復嗎?
可以。在開發團隊能對漏洞部署永久修補程式之前,FortiWeb 可以對應用程式進行臨時修補,或者對漏洞進行永久性修復。我們通常建議對一個已知漏洞進行永久修復,然而在許多情況下,這是不可能或不現實的,例如繼承的應用程式或即將停用的舊應用程式。