SOURCE: Incapsula


January 21, 2014 08:00 ET

Incapsula Launches Next-Generation Security Rules Engine

Boosts Defense Capabilities Against DDoS and Sophisticated Layer-7 Application Attacks

REDWOOD SHORES, CA--(Marketwired - Jan 21, 2014) - Incapsula, a cloud-based website performance and security service, today announced a next-generation security rules engine for instant remediation of the most sophisticated application level and business logic attacks. The new engine and InRules security scripting language allow customers to devise complex, granular security rules that are enforced within seconds across Incapsula's worldwide network.

The website and application security market demands an increasingly sophisticated response framework. The new security engine enables this framework by providing the most accurate response against DDoS and Sophisticated Layer-7 Application attacks. Incapsula's InRules allows customers to implement changes across their entire network instantaneously -- a feature that lends itself to the real time concerns of robust security protection.

"It typically takes other cloud services upwards of 45 minutes to enforce rules," said Gur Shatz, CEO, Incapsula. "Driven by our InRules security language, our new security engine allows customers to apply even those most complex, granular rules across our worldwide network in just seconds, for the first time giving customers the same controls as our security team."

Some examples of the new capabilities include:

Granular access control: Provides the ability to restrict access to a specific web resource (application, URL, parameter) per IP, country, or client type.

Focused mitigation: Applies mitigation rules with a fine tuned response only where needed. For example: Restricting the rate of account signups per IP and/or session, and requiring the client to pass a transparent browser integrity check.

Application flow enforcement: Enforces application logic such as parameter content and format validation, allowed rates, and flow enforcement. For example: Requiring a customer to submit a form before allowing them to move to checkout.

About Incapsula
Incapsula is a cloud-based, service that makes websites safer, faster and more reliable. Through its cloud-based delivery model, Incapsula offers websites, large or small, enterprise-grade security and performance optimization, securing websites from sophisticated multi-Gigabit DDoS attacks, illegal access attempts, spammers, scrapers and other malicious bots. The Incapsula service addresses the entire OWASP's Top 10 vulnerabilities list, an application security standard, highly recommended by the U.S. Federal Trade Commission.

Incapsula was founded in 2009 by a group of industry veterans with strong backgrounds in web application security, online safety and identity theft. Incapsula was spun out and is financially backed by Imperva, a leading provider of data security solutions. For more information, visit, follow us on Twitter @Incapsula_com, or visit or our blog.

Contact Information

  • Media Contact:
    Michelle Dailey for Incapsula
    Email Contact
    (415) 432-2458