Related Topics

Citrix Application Firewall protects sensitive application content, which if leaked, could result in fraud and identity theft. The business object protection modules provided in Application Firewall offer predefined object protection (i.e., U.S. social security numbers or credit card numbers) and the capability to protect any administratively‑defined data objects.

With Citrix Application Firewall, even a single instance of a protected data object anywhere in a web server response can be detected, blocked or rewritten before it is inadvertently disclosed. Blocking the transmission of sensitive data objects in corporate web pages provides an ideal solution for meeting the privacy requirements mandated by the growing number of governmental regulations, such as HIPAA, Gramm‑Leach Bliley Act and more.

Protect Credit Card Numbers from Ever Being Stolen from Your Site

When customers entrust their credit card information to an online vendor they are expecting that this confidential information is guarded vigorously. Any unauthorized leakage of customer credit card numbers can permanently damage a company's reputation and cost the company their most valued customers.

Unfortunately, credit card information is the number one target for information criminals. And the most direct route to a store of credit card information is through a web application attached to a back‑end database. Any number of vulnerabilities in web application code could result in a database breach and the loss of hundreds or thousands of credit card numbers.

Citrix Application Firewall's Commerce Protection Module prevents the unauthorized transmission of credit card numbers by web applications. It uses deep stream inspection technology to detect each instance of a credit card number in a web server response. Once detected, the SAFE Commerce module can block transmission, or mask the majority of digits in the credit card number making it worthless to hackers.

SAFE Commerce can serve as the last line of defense against hackers attempting to steal customer credit card numbers.

Protect Confidential Data from Ever Leaving Your Web Application

Application Firewall's integrated SAFE Object module prevents the unauthorized transmission of sensitive data via web applications. With SAFE Object, security managers can ensure that user‑defined data objects (e.g., customer account numbers or patient record IDs) will never be compromised by an application attack. It provides an ideal solution for meeting the privacy requirements mandated by the growing number of governmental regulations, such as HIPAA, Gramm‑Leach‑Bliley Act and more.

With SAFE Object, multiple data expressions can be defined for each protected web application. Using deep stream inspection technology each instance of a protected data object can be detected and blocked before it is inadvertently disclosed.

Listed below are just some examples of user‑defined data objects that can be protected with SAFE Object:

• Driver's License
• Account Numbers
• Patient ID numbers
• Transaction Codes
• Electronic Data Interchange (EDI) Tags
• Customer Identifications
• Billing codes

Citrix Products