Bot Management
Allow the good. Block the rest.
Multivariate Bot Detection
Incoming web traffic is subjected to a series of increasingly stringent challenges. Failure of any challenge results in that requestor being immediately blocked from network access.
Step 1a: Profiling ACLs
VIRTIS offers the most precise ACL capabilities in the industry. Requests can be filtered based on geolocation, network usage (VPN, proxy, TOR, cloud platform, etc.), and more.
Out of the box, this detects 75-80 percent of bot traffic. (The rate improves further once VIRTIS is customized for the web app or API it is protecting.)
VIRTIS' ACL eliminates the majority of bot traffic with minimal processing workload, before deep packet inspection begins.
Step 1b: Profiling Browser Environments
Incoming HTTP requests must pass a full stack of inspections and challenges in order to be validated.
Then, headless browsers are detected. VIRTIS goes beyond legacy techniques such as agent validation or javascript injection.
The platform subjects the requestor to a battery of advanced challenges, enabling VIRTIS to detect even the most sophisticated headless environments.
Step 2: Primary Filtering
Primary traffic filtering begins with blacklisting, rate limiting, and signature detection. These methods eliminate another tranche of bots with minimal workload.
The platform then continues with more stringent tests. Data integrity is ensured by Layer 7 inspection, including JSON payloads.
VIRTIS also includes a full positive security model, and ingests web and API schemas for enforcement. A full API provides programmatic control, allowing rapid schema additions or revisions in DevOps and DevSecOps environments.
Step 3: Dynamic Filtering
VIRTIS blocks requestors that display anomalous usage patterns over time, by monitoring consumption of resources in terms of quantity, pace, rhythm, types & methods, etc.
Most platforms track requests only by IP address. VIRTIS identifies attackers using multiple identifiers: IP, headers, cookies, even POST body arguments. Thus, VIRTIS can detect and block abuse even when an attack is performed simultaneously across multiple addresses.
The platform’s ruleset capabilities provide powerful, flexible, and granular filtering.
Step 4: Biometric Behavioral Analysis
For each application it protects, VIRTIS builds a sophisticated, comprehensive behavioral profile of legitimate users.
It learns and understands how legitimate users interact with each app: their device and browser statistics, the typical analytics and metrics of each session, the interface events (mouse clicks, screen taps, zooms, scrolls, etc.) they usually generate, and much more.
By definition, every hostile user (whether bot or human) must, at some point, deviate from legitimate user behavior.
As soon as it does, VIRTIS detects it and blocks it from further network access.
Not Just Bot Control
VIRTIS provides comprehensive web security
Next-gen WAF
defeats SQL injection, XSS, form manipulation, protocol exploits, cookie and session poisoning, malicious payloads, and other attacks.
Three-Layer DDoS
protection blocks attack traffic before it can affect the incoming Internet pipe. Resources autoscale as needed.
API Protection
via its client-side SDK. VIRTIS rejects automated usage, enforces API schemas, blocks reverse-engineering attempts, recognizes changes in API usage, and more.
Real Time Traffic Control
displays all details (headers and payloads) for all requests, both passed and blocked, and shows why the decisions were made for each.
DevSec Ops
VIRTIS recognizes & adapts to new deployments automatically, has a full API, and has other features for fully supporting agile workflows.
CDN and Load Balancing
Global CDN integration and load balancing accelerate the protected web apps’ responsiveness and availability to their users.
Solutions
DDoS Protection
Blocks DDoS and other attacks before the traffic even reaches your web infrastructure.
