Imperva Incapsula

Overview

Imperva Incapsula, now part of Imperva's broader cloud security platform, was a comprehensive cloud-based service designed to enhance the security, performance, and reliability of websites and web applications. It offered a suite of services including a robust Web Application Firewall (WAF), Distributed Denial of Service (DDoS) attack mitigation, a global Content Delivery Network (CDN), and advanced bot management capabilities. By acting as a reverse proxy, Incapsula sat between website visitors and the origin server, inspecting all incoming traffic for malicious activity and optimizing outgoing content delivery. This layered approach aimed to protect against a wide range of cyber threats, from common vulnerabilities like SQL injection and cross-site scripting (XSS) to large-scale DDoS attacks, while simultaneously improving website loading times and user experience.

Key Features

• Web Application Firewall (WAF): Provided a managed security layer that inspected HTTP traffic to and from a web application. It protected against common web vulnerabilities such as SQL injection, cross-site scripting (XSS), and OWASP Top 10 threats, using a combination of signature-based detection, anomaly detection, and custom rule sets.
• DDoS Mitigation: Offered comprehensive protection against various types of DDoS attacks, including volumetric, protocol, and application-layer attacks. It could handle massive attack volumes, ensuring website availability even under intense assault.
• Content Delivery Network (CDN): Leveraged a global network of Points of Presence (PoPs) to cache website content closer to end-users. This significantly reduced latency and improved page load speeds, enhancing the user experience and reducing bandwidth consumption for the origin server.
• Bot Mitigation: Differentiated between legitimate human visitors and automated bots. It could block malicious bots responsible for scraping, credential stuffing, and other harmful activities, while allowing legitimate search engine crawlers and beneficial bots to access the site.
• API Security: Provided security controls for APIs, protecting them from common attacks and ensuring their availability and integrity.
• SSL/TLS Management: Offered easy SSL certificate deployment and management, including support for free Let's Encrypt certificates, simplifying the process of securing website traffic.
• Load Balancing: Included intelligent load balancing capabilities to distribute incoming traffic across multiple origin servers, improving application availability and performance.

Typical Use Cases

• E-commerce Websites: Protecting online stores from DDoS attacks, WAF threats, and ensuring fast loading times for product pages and checkout processes, which is critical for conversion rates.
• SaaS Providers: Securing web applications and APIs that are central to their service offering, ensuring uptime and protecting sensitive customer data.
• Content Publishers and Media Sites: Shielding high-traffic websites from attacks that could disrupt content delivery and advertising revenue, while also improving global content access speeds.
• Financial Services: Providing robust security for online banking portals and trading platforms where data integrity and availability are paramount.
• Government and Public Sector: Protecting public-facing websites and applications from cyber threats and ensuring continuous service delivery.
• Any Business with an Online Presence: Businesses seeking to improve website performance, protect against common web vulnerabilities, and ensure their site remains accessible to customers.

Pricing & Hosting Model

Imperva Incapsula operated on a cloud-based SaaS model. Customers subscribed to its services, and Imperva managed the underlying infrastructure. Pricing was typically tiered based on factors such as bandwidth usage, the number of websites protected, the level of security features required (e.g., advanced WAF rules, bot management sophistication), and the desired support level. While Incapsula itself was a service, it did not host the customer's website; rather, it acted as a protective layer in front of the customer's existing hosting environment. The CDN component involved caching content on Imperva's global network, but the origin website remained hosted elsewhere.

Alternatives

Several other services offer similar combinations of WAF, CDN, DDoS mitigation, and bot management:

• Cloudflare: A very popular and comprehensive platform offering a free tier and robust paid plans for WAF, CDN, DDoS protection, DNS, and more.
• Akamai: A long-standing leader in CDN services, also offering advanced security solutions including WAF and DDoS protection, often targeted at enterprise-level clients.
• AWS CloudFront + AWS WAF: Amazon Web Services provides a CDN (CloudFront) and a managed WAF service that can be integrated for website protection.
• Azure CDN + Azure WAF: Microsoft Azure offers similar integrated CDN and WAF solutions.
• Fastly: Known for its high-performance CDN, Fastly also provides edge security features including WAF and DDoS mitigation.
• Sucuri: A security-focused company offering website firewall, malware scanning, and DDoS protection services.