Products
Leadsec Network Security Auditing System-Web Application Audit Type
Leadsec Network Security Auditing System-Web Application Audit Type
Demand Analysis
With the development of computer and network technologies, the application of information system has become more and more extensive, and the value and accessibility of enterprises’ key data have been improved. As a result, their security has also been threatened as never before. The extremely important and sensitive information such as bank accounts, social security information, telephone records, production or transaction details, product information, etc. are usually stored in the enterprises’ business systems. Once such information is tampered with or disclosed, if minor, it will cause economic loss to enterprises or the society, if severe, it will affect corporate image and even the social security. Therefore, it is necessary to protect the security of the web application system, and the Leadsec Web Security Auditing System-Web Application Auditing Product (hereinafter referred to as the Leadsec web application audit system) specifically addresses such security issues.
Product Introduction
The Leadsec Web Application Auditing System mainly performs fine-grit auditing and monitoring for the access behavior of the application system. A bypass can be deployed on the switch where the web application system is located. Through the analysis of the application access traffic, records, the business operation behaviors of the business personnel and the return information from the business system, and in-depth analysis on the security of business operation behaviors, violations, unauthorized rights and abnormal behaviors could be identified. Besides, it can also analyze the security risk of the business system itself, to help business directors improve the security control of the business system and ensure normal business operations.
Core Functions
Main functions of the Leadsec web application audit system:
Basic operation audit: It can mainly audit the operation of key accounts and privileged accounts, as well as the operation situation of key data and key information for the comprehensive audit of the application system operation;
Discovery of rule-breaking operation: The unknown account access, illegal client operation, unauthorized access to data, rule-breaking account creation, rule-breaking data modification and other operations can be found and informed to the management personnel through warning in real time;
Abnormal access analysis: It can find the account cracking in the system, database collision attack and other risks, generate audit characteristics according to the audit data, and generate audit reports for high-frequency operations and abnormal operations during non-working hours;
System security analysis: It can find security problems in the application system during the audit process, such as loose authorization control, plaintext transmission of passwords, non-blurring of key information, SQL injection, XSS attack and other problems;
System performance analysis: It can find out the performance problems of the audit system according to the audit results, such as function modules overload, system performance limit exceeding, etc.;
Product Advantages
■ Application architecture compatibility: The system can perform auditing for various applications’ load balancing architectures and various authentication architectures.
■ Resolution of encrypted applications: For encrypted applications (HTTPS), the relevant content can be fully parsed.
■ Business operation learning: The system automatically learns business operations and reduces the configuration workload.
■ High-speed event storage: The system adopts a solidified hardware architecture design, with a large capacity of data storage space.
■ Page simulation restoring: The page return information after the operation can be recorded, and is played back in the form of simulation to assist in forensics.
■ Real identity positioning: The system is linked with multiple authentication systems to track and audit natural persons.
■ Flexible search plan: The system has a variety of query and statistics conditions to choose from, so that users can trace various events.
■ Multi-dimensional audit report: The system provides more than 20 kinds of report templates to effectively present the security of the overall application.
Service hotline:
400-810-7766 (24H)
E-mail:
shfw@leadsec.com.cn
Address:
Zhongguancun, 8 dongbeiwang west road, haidian district, BeijingSoftware park 21
