Premium Website Security

Maximum Security and Performance for any website

Maximize website security, performance and availability using an advanced suite of cloud-based services powered by technology from our partner Imperva. This all-in-one Application Delivery solution can be activated in minutes through a simple DNS change, without any hardware or software installations, integrations or coding changes.

Enterprise-Grade Website Security

PCI-certified Web Application Firewall (WAF) and advanced bot protection capabilities secure your website against known and emerging application-level threats. The firewall is updated 24/7 and your website will always have the latest protection.

High-Capacity CDN & Optimizer

Based on a globally distributed network of data centers, the application-aware CDN delivers Full Site Acceleration through intelligent caching and content optimization tools.

"Always On" DDoS Protection

Leveraging the CDN and a dedicated 24/7 NOC, this service secures websites against network, application and DNS targeted DDoS attacks – with zero business disruption.

Load Balancing & Failover

Cloud-based Layer 7 load balancing, data center failover and global server load balancing, with real time health monitoring and notifications, ensures high availability and performance.

How it Works

Premium Website Security is activated through a simple DNS change, without any hardware or software installations. Once activated, the global CDN routes all traffic to your website and web applications, intelligently profiling this traffic in real-time to block all types of application layer threats as well as mitigating DDoS attacks. Meanwhile, outgoing traffic is accelerated and optimized with Premium Website Security's caching and optimization techniques, keeping welcome visitors speeding through.

Full-Scale protection against DDoS-Attacks

In today's digital society, the incidence of targeted digital attacks such as DDoS have increased exponentially. We provide you a cloud-based web application firewall that protects you against all types of DDoS attacks 24/7. You do not have to invest in hardware and can feel confident that you are at the forefront when it comes to security for your website.

Our website protection solution uses DNS redirection to persistently reroute website traffic (HTTP/HTTPS) through our network.

Once traffic enters our network, it is subject to progressively-stringent layers of inspection. Using sophisticated security rules and challenges, the solution ensures that DDoS attack traffic is identified and filtered out, while letting legitimate traffic to flow unhindered to protected websites. At the same time, the service also masks the origin server IPs to counter direct-to-IP attacks.

Since the service leverages our global content delivery network (CDN), no latency is introduced as web traffic passes through it. In fact, in many cases user experience is enhanced.

The service gets consistently high ratings in independent security evaluations and is positioned as a leader in its sector according to Gartner's Magic Quadrant. By the service, you get:

Always-on protection ensures automatic detection and mitigation of DDoS attacks.

Application and network layer DDoS attack protection.

Identification and differentiation between humans, good bots, bad bots, AJAX and APIs.

Includes a CDN and WAF for website performance and security enhancement.

Transparent mitigation with extremely low false positives (<0.01%).

As network DDoS attacks continue to grow in size, your organization needs robust network capacity to mitigate any threat that might come your way. Our global data center network offers 2Tbps of aggregate scrubbing capacity, enabling it to easily block attacks of any size.

The service’s renowned traffic inspection technology is proven to accurately identify malicious bots used for application layer DDoS attacks. Relying on a combination of behavioral and reputational analysis, rate-based heuristics, and a series of transparent and progressive client interrogation challenges, The service can weed out even the most sophisticated DDoS bots, with no impact to legitimate human visitors.

The service not only protects websites from complete denial of service, but also from disruptions related to DDoS attacks, and mitigation false-positives. We offer transparent mitigation with less than 1% false positives, and without degrading the normal user experience in any way. This lets you enjoy true DDoS protection, even from lengthy attacks, without disrupting business performance.

Our real-time monitoring solution provides live visibility into incoming traffic streams, offering detailed information about suspicious visitors and abnormal behavior. At the same time, our custom security rule engine empowers operators to implement new security rules on-the-fly. Together, these features enable effective, real-time response to all security threats.

The Premium Website Security service acts as a secure proxy, masking the IPs of your origin servers to prevent direct-to-IP DDoS attacks. For added security, operators can also choose to block incoming traffic from all non-Website Security Service IPs, ensuring that all visitors are inspected on their way to the origin.

FAQ

What’s the benefit of using the service Premium Website Security?

Website Security:

Protect your website from all OWASP threats, from scrapers and spammers to sophisticated injection and XSS attacks.

Website Performance:

On average, websites using the service's CDN are 50% faster and consume 40%-70% less bandwidth.

Analytics and Monitoring:

Real time analytics for website traffic, performance and threats.

Simple PCI Compliance:

Easy to achive with the service's PCI-Certified Web Application Firewall.

DDoS Protection:

The service delivers immediate and comprehensive protection for both network (Layers 3 and 4), Application (Layer 7) and DNS-targeted DDoS attacks.

Will the service Premium Website Security make my site faster?

YES! The service has a distributed network of data centers (POPs) that ensures that every user and website are serviced by the closest POP. This is the same principal technology that is used by most of the large websites to accelerate the delivery of their content through a Content Delivery Network (CDN). Furthermore, the service will make your site run faster and consume less computing and bandwidth resources by caching site data and applying other acceleration techniques.

Where are the Data Centers located?

We have a global network of high powered servers. To see a map of the data centers, click here.

My website has SSL. Can the service Premium Website Security support it?

YES. When adding an SSL site, we will lead you through a simple process of supporting SSL. The service Premium Website Security will automatically identify when websites that support SSL traffic (HTTPS) are added to the service. In order to enable support for SSL traffic, we generate a certificate for your domain that will be hosted on its servers. In this process you are requested to approve the creation of such a certificate by our SSL certificate provider.

What types of threats does the service Premium Website Security protect against?

Premium Website Security's enterprise-grade Web Application Firewall ensures that your website or application is always protected against any type of Application Layer hacking attempt. This includes OWASP top 10 threats such as SQL injection, cross site scripting, illegal resource access and remote file inclusion. The comprehensive DDoS Protection service secures applications and infrastructure from any type of DDoS attack, targeting any type of service.

Does the service Premium Website Security affect Google Analytics?

NO. Premium Website Security will not affect Google Analytics. Google Analytics works by inserting a piece of JavaScript into your web pages. This JavaScript interacts with the Google servers. Since Premium Website Security does not come between Google servers and your visitor, we have no effect on Google Analytics.

How does the service optimize website content?

Dynamic content caching

The service caches web site content on its proxies in order to return resources faster to users and reduce page load time, bandwidth and server load. It does not only cache static content but can also identify content dynamically generated by the application, which can be cached while it remains unchanged.

Compression

An average website page is 100KB to 500KB, depending on its content, structure, functionality and the resources it contains. For content-rich applications, the simple task of transferring the page to the browser can take a long time. Common web servers and browsers support content compression. Configuring the compression of resources on your web server requires complicated settings, technical expertise, and substantial processing power from your web server. The Premium Website Security service compresses this content for you, even when sent uncompressed from your server.

Minification

Minification is the process of removing all unnecessary characters from source code, without changing its functionality. These unnecessary characters usually include white spaces, new line characters and comments, often used to add readability to the code but not required for its execution. By removing these characters, the service minimizes your website's size, making it lighter and reducing loading time.

Maximum Security and Performance for any website