Web Application Security

Business continuity depends on your systems being secure.

Our services include the provisioning of many enterprise grade security protections for websites, intranets, email, documents, and custom web applications. In an forever changing security landscape, we can provide a level of assurance and peace of mind to business owners and their staff.

Hacking techniques are surfacing daily and year by year attacks continue to rise globally. In fact Symantec disclosed in a paper that more than 430 million new unique pieces of malware were caught in 2015. This is up 36 percent from the year before.

With Digital Catalyst you can feel confident with the security of your systems without having to compromise your services with heavy password layers and slow 3rd party protection wrappers. 

When it comes to protection, prevention is always better than a cure.

 

Our web application security solutions include:


Email Obfuscation

We encrypt email addresses you choose to display on your website by scrambling them in the source code. This prevents bots from reading and harvesting emails while retaining visibility to human visitors. We include this feature with our base hosting plan.


Inclusions: Base Hosting Plan


Ongoing Site Maintenance

Maintenance and security patching is a critical defence line. Up to date sites are protected from exploitation of new vulnerabilities as they get discovered. *n.b. Digcat only offers included patching for Drupal and Alfresco managed on our infrastructure.


Inclusions: Addon


Backup Protection

Protecting your hosted servers, websites, applications and emails is critical. We design custom solutions for when backups occur, how often they occur, and the type of backups (folder/ file, disk image, DRaaS) provided with an SLA.


Inclusions: Addon


Webform Protection

On our framework your webforms are protected from webform spam, sql injections, and other intrusions. We do this with a variety of methods including honeypots, DNS bouncing of bad IP neighbourhoods, and other methods to deflect unwanted attention.


Inclusions: Addon


SSL Security Encryption

Secure Socket Layers / HTTPS is a must-have for modern websites. By using SSL your site encrypts data such as passwords, credit card numbers and other sensitive information while it is in transit (inbound and outbound) to ensure it is kept confidential.


Inclusions: Addon


Firewall Protection

Our web application firewall uses "collective intelligence" meaning new threats from one website can be shared to block threats on other websites sitting on our global network. Block heavy hitters, bad neighbourhoods, IPs, or whole countries.


Inclusions: Addon


Content Scrape Protection

Prevent copying or stealing information and images from your website by making it harder than it usually is. Tools include disabling text selection, copy to clipboard, right-clicking, layering of transparent images, and hiding content from search engines.


Inclusions: Addon


DNS Protection with DNSSEC

Recently vulnerabilities in DNS were discovered that allow an attacker to hijack and control the DNS lookup. It accepts any address given to it no questions asked. DNSSEC secures this by verifying each request before a connection has been established.


Inclusions: Addon


SSL Forcing with HSTS

HTTP Strict Transport Security is a header which sets a website to enforce use of SSL security in client web browsers to prevent downgrade attacks, SSL stripping, and cookie hijacking. Forced SSL is important for websites needing higher security.


Inclusions: Addon


Traffic Rate Limiters

Rate limiting provides granular control for detecting bad traffic, customised rulesets to ensure that your legitimate visitors are not impacted, and insights on how to improve and capitalise on your security position as system attacks continue to evolve.


Inclusions: Addon


DDoS & DRDoS Security Protection

Our enterprise-class infrastructure has the capacity to absorb more than 20 times than the largest Distributed Denial of Service (DDoS) attack ever recorded. By operating at the network edge, it protects your website against all forms of DDoS attacks.


Inclusions: Addon