Reblaze

Multi-layer DDoS protection

• Reblaze provides full-scope DoS and DDoS protection, defeating attacks across layers 3, 4 and 7: network, transport and application. (Even many dedicated DDoS solutions do not fully protect layer 7).
• Multivariate threat detection accurately identifies and blocks attack traffic.
• Resources scale automatically as needed.
• Also defeats hacking attempts, bots and more.
• Can handle bandwidth activity larger than most ISPs.
• Fully managed (nothing to install or maintain) and always up-to-date.
• 24/7 incident support.

Exclude hostile bots from your APIs and web applications

• Reblaze includes full bot mitigation in its comprehensive web security platform. Hostile traffic is blocked in the cloud, before it reaches the protected network.
• Processing latency is minimal: ~0.5 ms.
• Web applications and API servers receive only legitimate requests. They remain secure, responsive and performant.

Multivariate bot detection

• Incoming web traffic is subjected to a series of increasingly stringent challenges. Failure of any challenge results in that requestor being immediately blocked from network access.

Endpoint security is vital

• Cloud-native and other service-based architectures have many advantages, and many organizations are adopting them. As a result, new RESTful web services and other API-based services are continually appearing.

Traditional solutions are inadequate

• Traditional approaches to web security cannot fully protect APIs. For example, headless browser detection plays a large role in identifying hostile bots within website traffic—but for incoming API traffic, there is no browser environment to detect.

Reblaze: Robust security for APIs

• Reblaze provides complete protection for microservice/API endpoints.
• A client-side SDK ensures mobile/native application traffic is TLS encrypted and continuously authenticated. All communications include an HMAC signature (a cryptographic identity mechanism on the client side) to harden communications between the application and the endpoint, ensuring that only requests from legitimate users are accepted.
• API schema ingestion, validation, and enforcement provides automated protection.
• Reverse-engineering prevention stops API attacks in their earliest stages.

Don't lose your traffic

• Today's Internet users are more impatient than ever. Researchers have found that an extra load-time delay of 250 milliseconds - just a quarter of a second - is often enough to convince a visitor to use your competitor's web site instead of yours.
• Reblaze, while making your web assets "secure by default", also integrates seamlessly with CDNs such as Amazon's CloudFront (among many others). This allows you to offload all static content service to the cloud. Your data center has a reduced load and can serve more users faster.

The fastest content delivery possible

• Each CDN server maintains a cache of your site's static and streaming content. Visitors receive your content directly from their closest server. Reblaze integrates with CDN providers that include a broad network of edge locations throughout the United States, Europe and Asia, thus providing accelerated delivery of your content.

The best site performance possible

• Because the CDN delivers your static content, your server has a reduced load and can be more responsive when saving dynamic and interactive content. Further optimization occurs as dynamic/interactive connections are consolidated and reused whenever possible, so your server has fewer connections to manage. Again, your site's performance is accelerated.

The most uptime possible

• Depending on the nature of your content, the CDN network can serve your site even if your server cannot be reached. Thus, your site remains up, even if your server goes down.

The most robust site possible

• Reblaze uses the CDN of your choice to dynamically adjust to each site's needs. You don't need to maintain extra in-house server capacity just for an occasional spike in demand - Reblaze provides it for you. Nor do you have to worry about scaling up your bandwidth during denial-of-service attacks - again, Reblaze does that for you, automatically.

A new approach to web security

• Curiefense is an OSS GitOps-based security platform for modern microservice architectures. It adds traffic filtering capabilities to containers, service meshes, ingress gateways, and many other components of modern topologies.

Fully integrated with NGINX and Envoy Proxy

• NGINX is the most popular web server in the world, and is widely used for other purposes as well. Curiefense adds built-in traffic filtering to NGINX environments.
• Curiefense also attaches directly to Envoy Proxy, and can be used anywhere Envoy runs: as a service mesh sidecar, ingress gateway, reverse proxy, load balancer, or other uses.

Comprehensive web security

• Curiefense is a unified platform, providing the same security technologies as Reblaze: WAF, DDoS protection, bot management, ATO prevention, API security, session flow control, advanced rate limiting and more.

Your traffic, fully revealed

• Other security solutions typically report only o the traffic that they block, So how can you be sure that your traffic is being filtered correctly?
• Reblaze makes all your traffic fully visible. You can see what is granted access to your network and what gets excluded. This allows you to fine-tune the filtering until it's exactly right.
• Reblaze allows you to know exactly what's going on in your site.

Your traffic, easily managed

• Other security solutions are difficult and time-consuming to administer.
• Conversely, Reblaze has been designed to be easy to use. Once it's set up, it makes your web assets secure by default. As Internet threats evolve, Reblaze adapts with countermeasures deploying automatically to protect your network.
• Reblaze combines the world's most advanced security technologies with an unmatched ease of use.

Your traffic, precisely managed

• Other security solutions provide only a few options for controlling access to your web assets.
• Conversely, Reblaze's ACL system gives you unique fine-grained control of your traffic. You can allow or deny access depending on city, country, company network, visitor behavior and more. I addition, Reblaze's human and behavioral detection gives you full control over what resources are visible and to whom. For example, you can allow access to normal human visitors and certain benevolent bots (such as those from search engines), while denying access to anonymized/proxied humans and malicious scraper bots.
• Reblaze gives you unmatched precision when managing your traffic.

Your traffic, in real time

• Other security solutions provide analytics that show you what happened in the past.
• Conversely, Reblaze has a live traffic mode, which shows you what is actually happening right now: who is visiting your site, where they are from, what they are looking at and so on. You can view traffic data by individual visitors or aggregate them by city, country, company, network, browsing behavior and more.
• Reblaze gives you complete, real-time information about what is going on inside your site.

Prevents account abuse

• The Reblaze platform includes ATO protection as a core part of its comprehensive web security software suite. It blocks unauthorized attempts to use or discover credentials, access user accounts, compromise active sessions and other forms of ATO.

Complete account security

• Reblaze uses multivariate analysis, identifying threat traffic not only by its source but also by its identity, behavior, and intent. The platform deploys in a dedicated VPC (Virtual Private Cloud) geolocated immediately in front of the protected network, blocking malicious traffic with near-zero latency.

Many threats, one security solution

• Modern threat actors use a variety of sophisticated tactics to wage ATO attacks. Reblaze protects against them all: it prevents credential theft, credential discovery, session attacks, and the abuse of valid credentials.