SlideShare a Scribd company logo

Prevent threats With Analytics Driven Web Application Firewall

Download as PPTX, PDF
Avi Networks, profile picture
Avi Networks

This webinar discusses how analytics-driven web application firewalls can help prevent threats. It covers why application security has become critical due to widespread data breaches. The webinar demonstrates NSX Advanced Load Balancer's web application firewall capabilities, including automated policy creation, advanced learning, and real-time insights. It also discusses a customer success story where NSX Advanced Load Balancer helped a lottery company reduce costs and simplify operations through elastic scaling and security analytics.

Technology
Related topics:
Application Security
1 of 22
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
Confidential │ ©2019 VMware, Inc. Webinar Christian Treutler R&D Security Engineer – NSBU, VMwareSeptember 5th 2019 Prevent Threats with Analytics-Driven Web Application Firewall
Confidential │ ©2019 VMware, Inc. Agenda 2 Why Application Security has become Critical Need for Analytics-driven Application Security Prevent Threats with Analytics-Driven Web Application Firewall Live Demos Customer success story Summary & Next Steps
3Confidential │ ©2019 VMware, Inc. We live in a time of data breaches.
Confidential │ ©2019 VMware, Inc. 4 Correlation of incidents into breaches Source: Verizon Data Breach Investigations Report (DBIR) 2019 Cost of a Data Breach report 2019 – Ponemon Institute Web Application Breaches and Cost $3.92M Average total cost of a data breach
Confidential │ ©2019 VMware, Inc. 5 Application Security is part of all of our lives. Breaches affect everybody.
6Confidential │ ©2019 VMware, Inc. “The biggest threat to security is the hyper-focus on security threats.” Pat Gelsinger - RSA conference 2019 Focus on Applications Make security intrinsic ___ Invest in Prevention
7Confidential │ ©2019 VMware, Inc. NSX Advanced Load Balancer & Web Application Firewall Technology overview
Confidential │ ©2019 VMware, Inc. 8 Why is WAF not Pervasively Deployed Rule Complexity Lack of Visibility Poor Scalability
Confidential │ ©2019 VMware, Inc. 9 BARE METAL VIRTUALIZED CONTAINERSON PREMISES PUBLIC CLOUDVIRTUALIZED CONTAINERS Modern, Scalable, Multi-Cloud Architecture CONTROLLER SERVICE ENGINE SEPARATE CONTROL & DATA PLANE ELASTICITY INTELLIGENCE AUTOMATIONMULTI-CLOUD
Confidential │ ©2019 VMware, Inc. 10 Comprehensive Security Stack NSX Advanced Load Balancer Encryption SSL/TLS L3/4 Firewall Rules IP-Port based Security Rules L7 Firewall Rules Content (URI) based security rules DDoS Protection DDoS detection and mitigation with elastic scaling Application Rate Limiting Control and restrict by application or tenants Security Insights Security score Attack insights SSL Insights WAF analytics Web Application Firewall OWASP TOP 10, Application protection, Attack Analytics Centralized Management Multi-Cloud Elastic Fabric Automation & Programmability Real Time Visibility & Analytics REST API Data Center Private Cloud Public Cloud
Confidential │ ©2019 VMware, Inc. 11 NSX Advanced Load Balancer WAF - Core Design Principles Automated Policy Creation Native OWASP Top 10 Protection Advanced Learning One-click Policy Tuning Real-time Insights Intelligence on Attacks, Application Behavior, and Rule Matches Elasticity and Automation High-Performance Auto-Scaling API-First Platform
Confidential │ ©2019 VMware, Inc. 12 Avi’s WAF Capabilities Application defense in depth • Application Learning and Positive Security • OWASP Top 10 Protection • Signatures and app-specific rules • HTTP protocol enforcement and input Validation – XSS, SQLi, etc. • Virtual patching using scripting for application logic flaws • API protection for JSON, XML • Metrics and statistics about the current application attack surface • Bot detection Backend Application Untrusted Trusted WAN
Confidential │ ©2019 VMware, Inc. iWAF policy checks Whitelist • High performance for trusted traffic • Match Criteria: Headers, IP, Path and more • Similar to HTTP policy matching PSM • Positive definition of Application behavior • Zero-day attacks defence and performance • Rules: Learning, Scanners, Manual Signatures • Scans for common attack patterns • Rules: OWASP Top 10 protection rules
Confidential │ ©2019 VMware, Inc. 14 Automating Application Security using ML FastPas s Deep Inspection Negative Security Deny Allow Traffic ML Classifier
Confidential │ ©2019 VMware, Inc. 15 Client AppResponse Security Application defense in depth Analytics Driven Security Application All metrics are accessible via API and can be used for policy updates. Analytics Engine supports over 1k data points
Confidential │ ©2019 VMware, Inc. 16 Application Security Automation CONTROLLER Deploy Anywhere CICD-capable Shift Left Security Scanner Integrations Metrics Engine App Behavior Learning Automated App Rule Updates Integrated Machine Learning Control Analytics
17Confidential │ ©2019 VMware, Inc. Demo WAF Introduction WAF Learning & Protection
18Confidential │ ©2019 VMware, Inc. Customer success Swisslos & Avi - A continuing success story
Confidential │ ©2019 VMware, Inc. 19 Challenges (2017) • Avi - easy to deploy very user friendly • Detailed analytics for cost reduction • API-first model for automation and self- service Solution (2017) • Avi has successfully handled all scaling requirements • Traffic peaks are seasonal; scale-out and scale-in continues to reduce costs Solution (2019) • 60% operational savings • Analytics and Insights simplify daily operations and troubleshooting • East Policy tuning Impact Location: Basel, Switzerland Securing the lottery - The Swisslos story Products Strategic Priorities Avi Networks ADC Avi Networks iWAF Software defined network and datacenter Secure all internet-facing applications Lotteries, sport bets and instant tickets for Switzerland  Modernizing DC to replace legacy HW  Appliance-based WAF  Lack of elasticity and poor performance => bad customer experience “The iWAF is so well integrated in the Avi solution that not using it would be a crime. It is not only protecting our applications but giving us loads of insights about threats and attacks thanks to the out of the box analytics.” JORIS VUFFRAY, HEADNETWORK & SYSTEM MANAGEMENT
20Confidential │ ©2019 VMware, Inc. Summary
21Confidential │ ©2019 VMware, Inc. Focus on Applications Make security intrinsic ____ Invest in Preventioneducing attack surface by adding WAF protection___________________________________ Learning application behavior to auto tune security policy_________________________ Security build into NSX Advanced Load Balancer by default ___________________ “NSX Advanced Load Balancer focuses on the application."
Confidential │ ©2019 VMware, Inc. Thank You

More Related Content

PPTX
How to Eliminate Load Balancer Upgrade Disruptions
Avi Networks
 
PPTX
What's New VMware NSX Advanced Load Balancer (Avi Networks)
Avi Networks
 
PPTX
Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...
Avi Networks
 
PPTX
How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...
Avi Networks
 
PPTX
Advanced Web Application Security with an Intelligent WAF
Avi Networks
 
PPTX
Multi Cloud Load balancing 101 and Hands-on Lab
Avi Networks
 
PPTX
Delivering Applications with Full Lifecycle Automation in a Multi-Cloud World
Avi Networks
 
PPTX
Accelerating Public Cloud Migration with Multi-Cloud Load Balancing
Avi Networks
 
How to Eliminate Load Balancer Upgrade Disruptions
Avi Networks
 
What's New VMware NSX Advanced Load Balancer (Avi Networks)
Avi Networks
 
Industry's Best Multi Cloud Application Services from Avi Networks, Now part ...
Avi Networks
 
How Multi-Cloud Load Balancing Automates Application Delivery and Drives Oper...
Avi Networks
 
Advanced Web Application Security with an Intelligent WAF
Avi Networks
 
Multi Cloud Load balancing 101 and Hands-on Lab
Avi Networks
 
Delivering Applications with Full Lifecycle Automation in a Multi-Cloud World
Avi Networks
 
Accelerating Public Cloud Migration with Multi-Cloud Load Balancing
Avi Networks
 

What's hot (20)

PPTX
Multi Cloud Load Balancing 101 and Hands On Lab
Avi Networks
 
PPTX
Securing Web Applications with Deep Automation with VMware NSX Advanced Load ...
Avi Networks
 
PPTX
Enabling Remote Employees with Horizon VDI and Avi Networks
Avi Networks
 
PDF
7 Requirements for Modern Load Balancers
Avi Networks
 
PPTX
Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...
Avi Networks
 
PPTX
Avi v20.1 — What’s New in Scalable, Multi-Cloud Load Balancing
Avi Networks
 
PDF
Working From Anywhere​ with​ Advanced Load Balancing​ and ​ VMware Horizon VDI
Avi Networks
 
PDF
Bringing SaaS Simplicity to Proactive Support & Live Threat Updates
Avi Networks
 
PPTX
Avi workshop-101
Avi Networks
 
PPTX
Multi-Cloud Load Balancing – Separating Fact from Fiction
Avi Networks
 
PDF
7 Virtues of a Next-gen ADC
Avi Networks
 
PPTX
Deploying Elastic, Self-Service Load Balancing for VMware NSX-T
Avi Networks
 
PPTX
Enterprise-Grade Load Balancing for VMware Cloud on AWS (VMC)
Avi Networks
 
PPTX
Multi-Cloud Load Balancing 101 and Hands-On Lab
Avi Networks
 
PPTX
Deep Dive on GSLB with VMware NSX Advanced Load Balancer (Avi Networks)
Avi Networks
 
PPTX
State of Load Balancing 2020
Avi Networks
 
PPTX
Multi-Cloud Load Balancing and Application Services
Avi Networks
 
PPTX
L4-L7 Application Services with Avi Networks
Avi Networks
 
PPTX
Private Cloud with Microsoft Technologies
Chris Avis
 
PDF
VMware Cloud on Amazon Web Services
MarketingArrowECS_CZ
 
Multi Cloud Load Balancing 101 and Hands On Lab
Avi Networks
 
Securing Web Applications with Deep Automation with VMware NSX Advanced Load ...
Avi Networks
 
Enabling Remote Employees with Horizon VDI and Avi Networks
Avi Networks
 
7 Requirements for Modern Load Balancers
Avi Networks
 
Deliver Modern Applications with an Elastic Load Balancing Fabric Powered by ...
Avi Networks
 
Avi v20.1 — What’s New in Scalable, Multi-Cloud Load Balancing
Avi Networks
 
Working From Anywhere​ with​ Advanced Load Balancing​ and ​ VMware Horizon VDI
Avi Networks
 
Bringing SaaS Simplicity to Proactive Support & Live Threat Updates
Avi Networks
 
Avi workshop-101
Avi Networks
 
Multi-Cloud Load Balancing – Separating Fact from Fiction
Avi Networks
 
7 Virtues of a Next-gen ADC
Avi Networks
 
Deploying Elastic, Self-Service Load Balancing for VMware NSX-T
Avi Networks
 
Enterprise-Grade Load Balancing for VMware Cloud on AWS (VMC)
Avi Networks
 
Multi-Cloud Load Balancing 101 and Hands-On Lab
Avi Networks
 
Deep Dive on GSLB with VMware NSX Advanced Load Balancer (Avi Networks)
Avi Networks
 
State of Load Balancing 2020
Avi Networks
 
Multi-Cloud Load Balancing and Application Services
Avi Networks
 
L4-L7 Application Services with Avi Networks
Avi Networks
 
Private Cloud with Microsoft Technologies
Chris Avis
 
VMware Cloud on Amazon Web Services
MarketingArrowECS_CZ
 
Ad

Similar to Prevent threats With Analytics Driven Web Application Firewall (20)

PPTX
Radware - WAF (Web Application Firewall)
Deivid Toledo
 
PDF
Extend Enterprise Application-level Security to Your AWS Environment
Imperva
 
PDF
2021 02-17 v mware-algo-sec securely accelerate your digital transformation w...
AlgoSec
 
PPTX
VMware overview presentation by alamgir hossain
ALAMGIR HOSSAIN
 
PPTX
#PCMVision: VMware NSX - Transforming Security
PCM
 
PPT
Protecting web aplications with machine learning and security fabric
DATA SECURITY SOLUTIONS
 
PDF
Protect Your Data and Apps in the Public Cloud
Imperva
 
PPTX
Why Network and Endpoint Security Isn’t Enough
Imperva
 
PPTX
Application Control - Maintenance Headache or Manageable Solution?
Ivanti
 
PPTX
VMware Customer references - Cloud
Anil Gupta (AJ) - vExpert
 
PDF
V Mworld 2010 Lab Cloud
csharney
 
PDF
AppTrana SECaaS (Security as a Service)
IndusfacePvtLtd
 
PDF
IT Security As A Service
Michael Davis
 
PDF
[OPD 2019] Top 10 Security Facts of 2020
OWASP
 
PPTX
VMware vShield - Overview
Irsandi Hasan
 
PDF
G05.2013 gartner top security trends
Satya Harish
 
PPTX
Radware Cloud Security Services
Radware
 
PPTX
Web_Appication_Security_Training_For_Developers.pptx
xobewe1102
 
PDF
Nvis pitch deck version 4 - 2021 dec
PhilSmith151163
 
PDF
Protecting the Core of Your Network
Mighty Guides, Inc.
 
Radware - WAF (Web Application Firewall)
Deivid Toledo
 
Extend Enterprise Application-level Security to Your AWS Environment
Imperva
 
2021 02-17 v mware-algo-sec securely accelerate your digital transformation w...
AlgoSec
 
VMware overview presentation by alamgir hossain
ALAMGIR HOSSAIN
 
#PCMVision: VMware NSX - Transforming Security
PCM
 
Protecting web aplications with machine learning and security fabric
DATA SECURITY SOLUTIONS
 
Protect Your Data and Apps in the Public Cloud
Imperva
 
Why Network and Endpoint Security Isn’t Enough
Imperva
 
Application Control - Maintenance Headache or Manageable Solution?
Ivanti
 
VMware Customer references - Cloud
Anil Gupta (AJ) - vExpert
 
V Mworld 2010 Lab Cloud
csharney
 
AppTrana SECaaS (Security as a Service)
IndusfacePvtLtd
 
IT Security As A Service
Michael Davis
 
[OPD 2019] Top 10 Security Facts of 2020
OWASP
 
VMware vShield - Overview
Irsandi Hasan
 
G05.2013 gartner top security trends
Satya Harish
 
Radware Cloud Security Services
Radware
 
Web_Appication_Security_Training_For_Developers.pptx
xobewe1102
 
Nvis pitch deck version 4 - 2021 dec
PhilSmith151163
 
Protecting the Core of Your Network
Mighty Guides, Inc.
 
Ad

More from Avi Networks (10)

PPTX
DR On Demand At Fraction of the Cost (1).pptx
Avi Networks
 
PPTX
Cloud_controllers_public_webinar_aug31_v1.pptx
Avi Networks
 
PPTX
Top 4 Reasons to Migrate From NSX Load Balancing to NSX Advanced Load Balancer
Avi Networks
 
PPTX
23.06.15 NSX ALB and vCD integration deepdive_webinar0615.pptx
Avi Networks
 
PPTX
Enterprises-Have-Replaced-12000-ADCs-See-Why.pptx
Avi Networks
 
PPTX
One And Done Multi-Cloud Load Balancing Done Right.pptx
Avi Networks
 
PPTX
Virtualize Application Security Today - Hardware is No Longer Needed.pptx
Avi Networks
 
PDF
Deploying Elastic Self-Service Load Balancing
Avi Networks
 
PPTX
NSX_Advanced_Load_Balancer_Solution_with_Oracle.pptx
Avi Networks
 
PPTX
Delivering Turnkey Load Balancing in VMware Cloud with Day 0 Automation
Avi Networks
 
DR On Demand At Fraction of the Cost (1).pptx
Avi Networks
 
Cloud_controllers_public_webinar_aug31_v1.pptx
Avi Networks
 
Top 4 Reasons to Migrate From NSX Load Balancing to NSX Advanced Load Balancer
Avi Networks
 
23.06.15 NSX ALB and vCD integration deepdive_webinar0615.pptx
Avi Networks
 
Enterprises-Have-Replaced-12000-ADCs-See-Why.pptx
Avi Networks
 
One And Done Multi-Cloud Load Balancing Done Right.pptx
Avi Networks
 
Virtualize Application Security Today - Hardware is No Longer Needed.pptx
Avi Networks
 
Deploying Elastic Self-Service Load Balancing
Avi Networks
 
NSX_Advanced_Load_Balancer_Solution_with_Oracle.pptx
Avi Networks
 
Delivering Turnkey Load Balancing in VMware Cloud with Day 0 Automation
Avi Networks
 

Recently uploaded (20)

PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Cloud computing and distributed systems.
kkkkkhan
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 

Prevent threats With Analytics Driven Web Application Firewall

  • 1. Confidential │ ©2019 VMware, Inc. Webinar Christian Treutler R&D Security Engineer – NSBU, VMwareSeptember 5th 2019 Prevent Threats with Analytics-Driven Web Application Firewall
  • 2. Confidential │ ©2019 VMware, Inc. Agenda 2 Why Application Security has become Critical Need for Analytics-driven Application Security Prevent Threats with Analytics-Driven Web Application Firewall Live Demos Customer success story Summary & Next Steps
  • 3. 3Confidential │ ©2019 VMware, Inc. We live in a time of data breaches.
  • 4. Confidential │ ©2019 VMware, Inc. 4 Correlation of incidents into breaches Source: Verizon Data Breach Investigations Report (DBIR) 2019 Cost of a Data Breach report 2019 – Ponemon Institute Web Application Breaches and Cost $3.92M Average total cost of a data breach
  • 5. Confidential │ ©2019 VMware, Inc. 5 Application Security is part of all of our lives. Breaches affect everybody.
  • 6. 6Confidential │ ©2019 VMware, Inc. “The biggest threat to security is the hyper-focus on security threats.” Pat Gelsinger - RSA conference 2019 Focus on Applications Make security intrinsic ___ Invest in Prevention
  • 7. 7Confidential │ ©2019 VMware, Inc. NSX Advanced Load Balancer & Web Application Firewall Technology overview
  • 8. Confidential │ ©2019 VMware, Inc. 8 Why is WAF not Pervasively Deployed Rule Complexity Lack of Visibility Poor Scalability
  • 9. Confidential │ ©2019 VMware, Inc. 9 BARE METAL VIRTUALIZED CONTAINERSON PREMISES PUBLIC CLOUDVIRTUALIZED CONTAINERS Modern, Scalable, Multi-Cloud Architecture CONTROLLER SERVICE ENGINE SEPARATE CONTROL & DATA PLANE ELASTICITY INTELLIGENCE AUTOMATIONMULTI-CLOUD
  • 10. Confidential │ ©2019 VMware, Inc. 10 Comprehensive Security Stack NSX Advanced Load Balancer Encryption SSL/TLS L3/4 Firewall Rules IP-Port based Security Rules L7 Firewall Rules Content (URI) based security rules DDoS Protection DDoS detection and mitigation with elastic scaling Application Rate Limiting Control and restrict by application or tenants Security Insights Security score Attack insights SSL Insights WAF analytics Web Application Firewall OWASP TOP 10, Application protection, Attack Analytics Centralized Management Multi-Cloud Elastic Fabric Automation & Programmability Real Time Visibility & Analytics REST API Data Center Private Cloud Public Cloud
  • 11. Confidential │ ©2019 VMware, Inc. 11 NSX Advanced Load Balancer WAF - Core Design Principles Automated Policy Creation Native OWASP Top 10 Protection Advanced Learning One-click Policy Tuning Real-time Insights Intelligence on Attacks, Application Behavior, and Rule Matches Elasticity and Automation High-Performance Auto-Scaling API-First Platform
  • 12. Confidential │ ©2019 VMware, Inc. 12 Avi’s WAF Capabilities Application defense in depth • Application Learning and Positive Security • OWASP Top 10 Protection • Signatures and app-specific rules • HTTP protocol enforcement and input Validation – XSS, SQLi, etc. • Virtual patching using scripting for application logic flaws • API protection for JSON, XML • Metrics and statistics about the current application attack surface • Bot detection Backend Application Untrusted Trusted WAN
  • 13. Confidential │ ©2019 VMware, Inc. iWAF policy checks Whitelist • High performance for trusted traffic • Match Criteria: Headers, IP, Path and more • Similar to HTTP policy matching PSM • Positive definition of Application behavior • Zero-day attacks defence and performance • Rules: Learning, Scanners, Manual Signatures • Scans for common attack patterns • Rules: OWASP Top 10 protection rules
  • 14. Confidential │ ©2019 VMware, Inc. 14 Automating Application Security using ML FastPas s Deep Inspection Negative Security Deny Allow Traffic ML Classifier
  • 15. Confidential │ ©2019 VMware, Inc. 15 Client AppResponse Security Application defense in depth Analytics Driven Security Application All metrics are accessible via API and can be used for policy updates. Analytics Engine supports over 1k data points
  • 16. Confidential │ ©2019 VMware, Inc. 16 Application Security Automation CONTROLLER Deploy Anywhere CICD-capable Shift Left Security Scanner Integrations Metrics Engine App Behavior Learning Automated App Rule Updates Integrated Machine Learning Control Analytics
  • 17. 17Confidential │ ©2019 VMware, Inc. Demo WAF Introduction WAF Learning & Protection
  • 18. 18Confidential │ ©2019 VMware, Inc. Customer success Swisslos & Avi - A continuing success story
  • 19. Confidential │ ©2019 VMware, Inc. 19 Challenges (2017) • Avi - easy to deploy very user friendly • Detailed analytics for cost reduction • API-first model for automation and self- service Solution (2017) • Avi has successfully handled all scaling requirements • Traffic peaks are seasonal; scale-out and scale-in continues to reduce costs Solution (2019) • 60% operational savings • Analytics and Insights simplify daily operations and troubleshooting • East Policy tuning Impact Location: Basel, Switzerland Securing the lottery - The Swisslos story Products Strategic Priorities Avi Networks ADC Avi Networks iWAF Software defined network and datacenter Secure all internet-facing applications Lotteries, sport bets and instant tickets for Switzerland  Modernizing DC to replace legacy HW  Appliance-based WAF  Lack of elasticity and poor performance => bad customer experience “The iWAF is so well integrated in the Avi solution that not using it would be a crime. It is not only protecting our applications but giving us loads of insights about threats and attacks thanks to the out of the box analytics.” JORIS VUFFRAY, HEADNETWORK & SYSTEM MANAGEMENT
  • 20. 20Confidential │ ©2019 VMware, Inc. Summary
  • 21. 21Confidential │ ©2019 VMware, Inc. Focus on Applications Make security intrinsic ____ Invest in Preventioneducing attack surface by adding WAF protection___________________________________ Learning application behavior to auto tune security policy_________________________ Security build into NSX Advanced Load Balancer by default ___________________ “NSX Advanced Load Balancer focuses on the application."
  • 22. Confidential │ ©2019 VMware, Inc. Thank You