Fastly Case Studies OFX Enhances Application Security with Fastly Next-Gen WAF

	OFX Enhances Application Security with Fastly Next-Gen WAF Fastly

OFX Enhances Application Security with Fastly Next-Gen WAF

Fastly

Technology Category	Application Infrastructure & Middleware - Event-Driven Application Cybersecurity & Privacy - Application Security
Applicable Industries	Electrical Grids National Security & Defense
Applicable Functions	Quality Assurance
Use Cases	Supply Chain Visibility Tamper Detection
Services	Cloud Planning, Design & Implementation Services Testing & Certification
Challenge	OFX, an international financial transfer platform based in Sydney, Australia, processes over $22 billion annually through its web application. After a three-year migration to the cloud, OFX sought to increase visibility and protection against Open Web Application Security Project (OWASP) attacks and authentication abuse in its cloud-first microservices infrastructure. Partners interact with the OFX platform via APIs that communicate with internal microservices. Richard Lane, Head of Digital Security at OFX, wanted to ensure that their microservices weren't implicitly trusting others and sought a product that would provide visibility. He was looking for a solution that was easy to install, use, and could effectively block malicious traffic automatically, including logins, without causing production incidents. Read More
About Customer	OFX is an international financial transfer platform based in Sydney, Australia. It processes over $22 billion annually through its web application. The company recently completed a total migration to the cloud over a period of three years. OFX's partners interact with the platform via APIs that communicate with internal microservices. The company was looking for a solution to increase visibility and protection against Open Web Application Security Project (OWASP) attacks and authentication abuse in its cloud-first microservices infrastructure. Read More
Solution	OFX deployed the Fastly Next-Gen WAF in their mid-tier environment with an agent on their web servers. This allowed them to gain deep application visibility. The Fastly Next-Gen WAF web server module plugins, which communicate with lightweight agents, were easily deployed by the security team and cloud architect without taxing the engineering team. After installing the software in minutes, the security team used Fastly Next-Gen WAF to uncover application errors and address root causes more efficiently and effectively. The quality assurance team uses the Fastly Next-Gen WAF monitoring via easy-to-consume dashboards as a part of their release protocols to catch any issues quickly. OFX also configured the Fastly Next-Gen WAF Power Rules for successful and failed login attempts, establishing a baseline for their normal authentication traffic. They created custom thresholds to alert and block malicious authentication traffic aggressively whenever it deviates from normal behavior. Read More Log in to view content
Contents

Technology Category

Application Infrastructure & Middleware - Event-Driven Application

Cybersecurity & Privacy - Application Security

Applicable Industries

Electrical Grids

National Security & Defense

Applicable Functions

Quality Assurance

Use Cases

Supply Chain Visibility

Tamper Detection

Services

Cloud Planning, Design & Implementation Services

Testing & Certification

Challenge

OFX, an international financial transfer platform based in Sydney, Australia, processes over $22 billion annually through its web application. After a three-year migration to the cloud, OFX sought to increase visibility and protection against Open Web Application Security Project (OWASP) attacks and authentication abuse in its cloud-first microservices infrastructure. Partners interact with the OFX platform via APIs that communicate with internal microservices. Richard Lane, Head of Digital Security at OFX, wanted to ensure that their microservices weren't implicitly trusting others and sought a product that would provide visibility. He was looking for a solution that was easy to install, use, and could effectively block malicious traffic automatically, including logins, without causing production incidents.

About Customer

OFX is an international financial transfer platform based in Sydney, Australia. It processes over $22 billion annually through its web application. The company recently completed a total migration to the cloud over a period of three years. OFX's partners interact with the platform via APIs that communicate with internal microservices. The company was looking for a solution to increase visibility and protection against Open Web Application Security Project (OWASP) attacks and authentication abuse in its cloud-first microservices infrastructure.

Solution

OFX deployed the Fastly Next-Gen WAF in their mid-tier environment with an agent on their web servers. This allowed them to gain deep application visibility. The Fastly Next-Gen WAF web server module plugins, which communicate with lightweight agents, were easily deployed by the security team and cloud architect without taxing the engineering team. After installing the software in minutes, the security team used Fastly Next-Gen WAF to uncover application errors and address root causes more efficiently and effectively. The quality assurance team uses the Fastly Next-Gen WAF monitoring via easy-to-consume dashboards as a part of their release protocols to catch any issues quickly. OFX also configured the Fastly Next-Gen WAF Power Rules for successful and failed login attempts, establishing a baseline for their normal authentication traffic. They created custom thresholds to alert and block malicious authentication traffic aggressively whenever it deviates from normal behavior.

Impact #1	The deployment of Fastly Next-Gen WAF has provided OFX with a significant increase in visibility and protection against OWASP attacks and authentication abuse. The solution was easy to install and use, and it effectively blocked malicious traffic automatically without causing production incidents. The quality assurance team uses the Fastly Next-Gen WAF monitoring via easy-to-consume dashboards as a part of their release protocols to catch any issues quickly. The Fastly Next-Gen WAF Power Rules have also allowed OFX to gain visibility into the origin IP and behavior of user logins to detect suspicious actors and patterns. This has resulted in a more secure and efficient operation.

Impact #1

The deployment of Fastly Next-Gen WAF has provided OFX with a significant increase in visibility and protection against OWASP attacks and authentication abuse. The solution was easy to install and use, and it effectively blocked malicious traffic automatically without causing production incidents. The quality assurance team uses the Fastly Next-Gen WAF monitoring via easy-to-consume dashboards as a part of their release protocols to catch any issues quickly. The Fastly Next-Gen WAF Power Rules have also allowed OFX to gain visibility into the origin IP and behavior of user logins to detect suspicious actors and patterns. This has resulted in a more secure and efficient operation.

Benefit #1	OFX processes over $22 billion annually through its web application.
Benefit #2	The Fastly Next-Gen WAF was installed in minutes, allowing the security team to uncover application errors and address root causes more efficiently and effectively.
Benefit #3	OFX established a baseline for their normal authentication traffic and created custom thresholds to alert and block malicious authentication traffic aggressively whenever it deviates from normal behavior.

Benefit #1

OFX processes over $22 billion annually through its web application.

Benefit #2

The Fastly Next-Gen WAF was installed in minutes, allowing the security team to uncover application errors and address root causes more efficiently and effectively.

Benefit #3

OFX established a baseline for their normal authentication traffic and created custom thresholds to alert and block malicious authentication traffic aggressively whenever it deviates from normal behavior.

Download PDF Version

Overview

OFX Enhances Application Security with Fastly Next-Gen WAF

Operational Impact

Quantitative Benefit