As commercial banks move more and more businesses to the Internet, online business forms represented by online banking have been widely used in China. However, after the banking system is networked, the network security problem poses a huge challenge to banks. More and more banks are adopting Web application firewall (WAF) to protect the security of Web application systems.
The Online Business System of a commercial bank in Guangzhou includes: Web Site Server group, enterprise network banking Web group, and personal online banking Web group. The dataset of the IT system has a high process. Therefore, the bank information center has high requirements on system reliability, availability, and application system continuity. Therefore, the bank information center has elevated the network security and data security of its system to a higher level of security protection.
The Web application systems of commercial banks are faced with a wide range of Internet attack technologies, especially the attacks against online banking systems. For example: SQL Injection, XSS attacks, overflow attacks, Trojan attacks, leeching attacks, Web malicious scanning attacks, CSRF attacks, XML DoS attacks, CC attacks, bank card and ID card information leakage, etc, it will bring great troubles to the Business System of Commercial Banks.
The commercial bank has fully analyzed and rated the security of the Web application system according to its own security construction requirements. During the selection of website security protection equipment, the commercial bank invited a number of domestic Web application firewalls (WAF) to test and compare the security vendors in the real environment, tianqing Web Application Security Gateway of Venus wins by virtue of its outstanding performance in performance, functions, and features, the commercial bank decided to use the WAF series of Starling as a key component for building business system security protection solutions. The implementation of this solution provides a good example for the network system security and business system security construction of commercial banks. The product deployment topology is shown in:
Deploy the WAF series of Starling in the firewall. Before the server group, focus on analyzing the Web business system access behavior that passes through the network boundary, and follow the website security and policy information that comes with the system, to control and defend against various Web service system violations and abnormal behaviors.
In addition, the central management and control center of Starling WAF can manage multiple engines, allowing commercial banks to centrally manage and configure Web security devices and policies of their subordinate branches.
Qiming Xingxing WAF provides excellent defense capabilities for a variety of deep attacks. After deploying WAF, the security of the banking Web application system has been greatly improved.