hyperguard in the cloud

hyperguard® SaaS basic for GoGrid is a specially packaged version of the distributed web application firewall (dWAF) product hyperguard® from art of defence.

 

hyperguard is integrated as a software plug-in into web servers – Apache 2.2 and Microsoft IIS 7.0 – on corresponding Linux or Microsoft operating systems and delivered as a pre-configured Partner GSI. If you have built your custom GSI on top of GoGrid´s own Linux or Microsoft web server offerings you can just replace those with the hyperguard GSI to add comprehensive attack detection and protection functions at the web application layer.


hyperguard flow diagram


The picture above shows the typical request flow between a client and your web-application.
 

  • Step One: Client Request

    In this step the client (or an attacker) sends a HTTP-request containing various information to the web-server.

  • Step Two: Request Analysis

    hyperguard intercepts all incoming traffic and sends it to its decision-engine for detailed analysis.

  • Step Three: Attack Logging

    hyperguard is able to log all kind of information like IP-addresses etc. to a separated log-service to allow further analysis of client access or hacking attempts. Per default hyperguard only logs a limited amount of data which usually contains information about violations of a ruleset.

  • Step Four: Decision Step

    After analyzing the request the final decision is performed. Violations of a ruleset in 'protection mode' result in a defined block of the incoming data - there will be no data passed to your web-application.

  • Step Five: Passing valid requests

    If hyperguard decided that there is no violation of your rulesets it simply passes the original request to your web-application. The web-application itself is never touched by hyperguard.



The picture above shows the current deployment scenario of hyperguard SaaS basic. The customer GSI is equipped with a hyperguard basic installation allowing the adminstration of hyperguard SaaS basic through the server itself.

 

A hyperguard basic customer is able to manage all functionality like ruleset-configuration or attack analysis via a easy to use management interface.

 

All incoming traffic of your clients gets securely passed to hyperguard basic SaaS. After analyzing the request the final decision is performed. Violations of a ruleset in 'protection mode' result in a defined block of the incoming data - there will be no data passed to your web-application. In case of a valid request the data is passed to the web-application.