ASF Series
Web Application
Firewall & DDoS

Essential Security for Essential Applications

Essential Security for Essential Applications

Array web application firewalls provide a flexible and precise tool for securing business-critical resources. Commonly deployed along with load balancing and app delivery solutions, the ASF detects and blocks attacks including the OWASP Top 10, WASC, Layer 7 DDoS, and zero-day attacks with pinpoint accuracy. It ensures continuous security for applications, APIs, users, and infrastructure while supporting compliance with security standards including PCI DSS.

Every ASF web application firewall provides a comprehensive set of protector modules and security engines that guard against a range of client side, server side, automated and manual attacks. Available as physical or virtual appliances, or on your choice of public cloud, the ASI Series is ideal for businesses needing defense in depth against application-level attacks not readily detected by network firewalls, intrusion detection and prevention systems or network monitoring.

Protect Web Applications & APIs

Array web application firewalls provides businesses with a flexible and precise tool for fully securing applications, APIs, users, and infrastructure against web attacks and zero-day exploits.

Smart Detection

  • Web Threat Intelligence
  • Threat Correlation

Machine Learning

  • Real-time User Behavior Analytics
  • Neural Networks

Vulnerability Management

  • Virtual Patching
  • Fingerprint
  • Black-Box Scanner
Protect Web Applications & APIs

Advanced WAF Features

  • Proactive DDoS Defense

    Proactive DDoS Defense

    Profiling with behavioral analysis improves application security and predicts how attacks will unfold.

  • Automatically Block Zero-Day Attacks

    Automatically Block Zero-Day Attacks

    Multiple techniques, based on machine learning algorithms, combine to flag anomalies and automatically stop threats.

  • Targeted Protection

    Targeted Protection

    Built in security scanners detect vulnerabilities in application source code and block attack attempts.

  • Prevent Attacks on End Users

    Prevent Attacks on End Users

    Application users stay safe thanks to client security module data masking and granular access settings.

  • Pinpoint Protextion from Bot Attacks

    Pinpoint Protextion from Bot Attacks

    Modeling of user behavior makes it easy to identify bots and thwart automated attacks without slowing legit traffic

  • Full Security For Web & Mobile APIs

    Full Security For Web & Mobile APIs

    Threats to web and mobile APIs are stopped by analysis of JSON and XLM data, as well as 3rd party integrations.

  • Secure Application Delivery

    Secure Application Delivery

    Deploy in conjunction with Array load balancing to create an end-to-end application delivery networking solution.

  • Physical, Virtual & Cloud Deployment

    Physical, Virtual & Cloud Deployment

    Available as physical or virtual appliances, or as cloud-native instances on AWS, Azure and Google Cloud Platform

All-around, all-the-time application protection against zero-day attacks.

Deployment Options

  • Hardware


    High availability appliances scalable to 160 Gbps of network throughput. Multi-tenant network hyper-converged infrastructure for flexibility with performance.

  • Software


    WAF virtual appliances with support for popular hypervisors including VMware, Hyper-V and KVM. Available as permanent or subscription licenses.

  • Cloud


    Available natively on industry-leading cloud platforms including AWS, Azure and Google Cloud. Supports utility consumption and BYOL license options.

Need more information?

Connect with an Array expert today; we look forward to learning more about your unique business and technical requirements.