Citrix was recently recognized as a Leader and Fast Mover for application security in the latest GigaOm Radar report. During RSA Conference 2022, Citrix is sharing new features that will make it easier for customers to secure their valuable apps, data, and infrastructure. In this blog post, we’ll look at each and show how they can help to protect your organization.
A+ Certified SSL for All Your Apps at the Click of a Button
Encryption of data is the most important way to safeguard transactions. However, setting up and maintaining a strong SSL configuration can be a manual, time-consuming, and error-prone process. With the industry’s first intent-based app delivery and security service, Citrix is excited to announce that you can implement the strongest possible encryption for all your apps with a single click to help protect communications and achieve the coveted A+ rating from Qualys SSL Labs.
By simply defining your A+ SSL intent, you eliminate all the tedious research, configuration, and maintenance. Citrix’s solution defines the right policies, selects the most secure TLS protocols and cipher suites, and configures the use of appropriate key lengths that are considered secure. Citrix App Delivery and Security Service with intent-based configuration and one-touch A+ SSL automation is generally available today.
Keep Your Business Online with Citrix DDoS Protection Service
DDoS attacks are the No. 1 reason businesses go offline and can have a severe impact on employee productivity and customer engagement. The losses from a DDoS attack can threaten a business’s survival.
Citrix is thrilled to announce its new DDoS protection service, which enables customers to protect critical assets in minutes. This cloud-based service provides comprehensive protection against the most sophisticated DDoS attacks, whether your apps are deployed in the cloud, on premises, or both. It offers global coverage and scale with 14 scrubbing centers globally, which are capable of scrubbing 12 terabits per second to protect against even the largest DDoS attacks.
Available as an “always-on” or “on-demand” service, Citrix’ DDoS protection enables businesses to choose the level of protection that’s right for them, without breaking their budget. The service is easy to deploy, manage, and scale, delivering simple onboarding and minimal setup, and is available now. In addition to this new service, Citrix also offers a comprehensive, unified Citrix Web App and API Protection service, which provides web app firewall, bot management, and DDoS protection together, supporting vendor consolidation and simplicity.
Simplified Protection Against the OWASP Top 10 Most Critical Threats
The most recent update to OWASP’s top 10 most critical threats to web apps, brings with it significant changes that will affect the way businesses approach application security. Ensuring that you are protected against these threats in an evolving cyber security landscape can be a cumbersome, error-prone task that can leave your business unknowingly exposed.
Citrix is happy to announce the new OWASP top 10 Stylebook that can help you mitigate your risk, quickly and easily. Simply input a few details about your application, and Citrix solution automatically adds the right security policies to protect your apps against the most critical web threats in the OWASP top 10.
By automating this protection, you can keep your valuable apps and data secure and ensure that your security postures remain compliant with your corporate and regulatory standards.
Reduce False Positives with Command Injection Grammar Checks
False positives are a perennial issue with application security and web app firewalls. It is time consuming to check individual notifications and relax rules accordingly. And alert fatigue can lead to admins inadvertently allowing malicious traffic through to the application.
After the excellent reception we received for our SQL injection grammar engine, Citrix is pleased to extend this engine to command injection.
When Citrix Web App Firewall sees a command keyword, it examines the context in which it is used to determine whether it is an actual command that needs to be checked or it is harmless and can be ignored.
Available now as part of the Citrix app security portfolio, this new grammar engine can help you dramatically reduce the incidence of false positives and relieve admins of the burden of checking them.
Simple Steps to Improved Security
We’re excited about how these new features will help customers simplify the configuration of application security and ensure that their businesses are stay online, functioning, and secure. Learn more about how to secure your applications and APIs everywhere.
Disclaimer: The development, release and timing of any features or functionality described for our products remains at our sole discretion and are subject to change without notice or consultation. The information provided is for informational purposes only and is not a commitment, promise or legal obligation to deliver any material, code or functionality and should not be relied upon in making purchasing decisions or incorporated into any contract.
