SQL injection is a code injection technique that exploits a security vulnerability in the database layer of an application.
Incapsula's enterprise-grade PCI-certified Web Application Firewall (WAF) ensures that your website or application is always secure and available. Based on Imperva’s industry-leading technology and experience and using a "Security as a Service" approach, Incapsula's security experts manage and update the WAF 24x7 to ensure that you are always protected against new and emerging threats. Incapsula's WAF can be set up and configured within a matter of minutes by changing your website's DNS setting.
Incapsula’s Enterprise-level WAF protects against the Open Web Application Security Project (OWASP) most critical Web Application Security risks, as:
Incapsula’s WAF is certified by the PCI Security Standards Council. It delivers cost-effective compliance with PCI DSS requirement 6.6 without any hardware or software installation and without changes to your web application.
Incapsula protects you from liabilities and non-compliance penalties, while protecting your customers' sensitive data from exposure on your site.
Incapsula’s PCI compliance report audits security rules configuration changes and periodically reports on your compliance with PCI 6.6 requirements.
Each security rule can be configured specifically according to the customer’s blocking policy (block request, block IP, block session or block log only).
The security policy can be fine-tuned to address specific URLs, fields, IP addresses and countries. Powerful access control capabilities enable you to define exceptions and minimize false-positives.
Incapsula provides customers with a detailed analysis of every threat that was posed to your website including: IP address, user agent, location, and other pertinent session information.
Incapsula’s custom security rules allow you to apply your organization’s security policy within Incapsula’s Web Application Firewall, by configuring a variety of rule triggers and adding different rule actions.
Incapsula uses crowdsourcing techniques to improve the security of the entire network of websites on the service. Any attack against a website protected by Incapsula is recorded and published throughout the network. All other websites are immediately protected from the malicious source and the attack technique.