Web Application can be protected by means of an holistic approach based on:
* thorough code review;
* deep application vulnerability testing;
* defense through a web application firewall.

Advanction can help companies in any of those fields, implementing a deep competence in securing web application and defending from external threat.

Web Application Firewalls
A Web Application Firewall defends web applications from attacks coming from the outside.
Advanction is able to deliver web application security projects based on this technology, using best of breed products.

An application layer firewall is a computer networking firewall operating at the application layer of a protocol stack. Also known as a proxy-based firewall, it may be implemented as a piece of software running on a single computer, or a stand-alone piece of hardware. Often, it is a host using various forms of proxy servers to proxy traffic before passing it to a gateway router. Because it acts on the application layer, it may inspect the contents of the traffic, blocking specified content, such as certain websites, viruses, attempts to exploit known logical flaws in client software.

Application-layer firewalls work on the application level of the TCP/IP stack (i.e., all browser traffic, or all telnet or ftp traffic), and may intercept all packets traveling to or from an application. They block other packets, if configured, dropping them without acknowledgment to the sender. In principle, application firewalls can prevent all unwanted outside traffic from reaching protected machines.

On inspecting all packets for improper content, firewalls can restrict or prevent outright the spread of networked computer worms and trojans. In practice, however, this becomes so complex and so difficult to attempt (given the variety of applications and the diversity of content each may allow in its packet traffic) that comprehensive firewall design does not generally attempt this approach.