DATASHEET

Client-Side Protection

Prevent data theft from client-side KEY CAPABILITIES

attacks DISCOVERY
Continuous discovery and
There’s a lot of untrusted, untested code running on enterprise websites that no one inventorying of services
knows is there, making for a lucrative attack surface for fraudsters and bad actors. The
Needs review alerting
widespread use of JavaScript services on web applications has created a blind spot for
security teams. They struggle to keep an inventory of all these services executing in Domain search and filtering
their applications at any given moment. Even with proper tracking of these services, the
BLOCKING
risk of a familiar third-party service becoming compromised is real. Once compromised,
client-side attacks like formjacking, digital skimming, and Magecart can exploit it to steal Out-of-the-box blocking of
sensitive data directly from the client. Due to the stealthy nature of these attacks, they known malicious services

often go undetected for extended periods of time, resulting in a massive customer data Easily block unapproved
breach, and risking non-compliance with data privacy regulations. This growing threat services with just 1-click

has been acknowledged by PCI DSS, which recently implemented new requirements Identifies all allowed or blocked
around script management on payment pages. services

INSIGHTS
Imperva Client-Side Protection Visibility into service status

Client-Side Protection mitigates the risk of your customers’ most sensitive data Understand requested resource
type
landing in the hands of bad actors. It prevents supply-chain fraud from client-side
attacks like formjacking, Magecart, and other online skimming attacks. Client-Side Domain country origin
Protection automatically scans for existing and newly added services on your site, Service discovery date
eliminating the risk of them being a blind spot for the security team. By providing clear
Certificate status check of
visibility with actionable insights as well as easy controls, it empowers your security domain
team to effortlessly determine the nature of each service, and block any unapproved
External domain insights
ones. Client-Side Protection enables your organization to meet the latest compliance
standards, including those set in the latest version of PCI DSS (4.0). This is achieved Service location within code
by capabilities such as comprehensive inventorying, authorization, dynamic integrity
verification, and real-time monitoring for all code on payment pages. These ensure the
COMPLIANCE
security of your web applications’ client-side and make maintaining compliance easy. Comply with data privacy
regulations, including the latest
PCI DSS requirements

Full Terraform support

Data Sheet | Client-Side Protection imperva.com

Continuously monitors for new JavaScript services
IMPERVA
Websites are constantly improved and updated with new code and functionality.
APPLICATION
Unfortunately, security teams are typically blind to any new services being executed.
SECURITY
If any of these services are compromised, the website could become the victim of
a client-side attack like formjacking. Imperva’s Client-Side Protection gives security Client-side Protection is a key
component of Imperva’s Web
teams visibility and control over any third-party JavaScript code embedded in your
Application & API Protection
web applications. With continuous monitoring, the security team is alerted to any new (WAAP), which reduces risk
services being executed. while providing an optimal
user experience. Our solutions
safeguard applications on-
premises and in the cloud with:
Provides actionable insights to security teams Web application firewall (WAF)

Beyond just the identification of services and blocking known malicious ones, Imperva’s API Security
Client-Side Protection offers detailed insights about all JavaScript services on your
Distributed Denial of Service
website. The domain risk score adds a credibility rating for each service, making it easier (DDoS) protection
for security to determine the nature of each service, and decide whether it should be
Advanced Bot Protection
allowed to run or not. Client-Side Protection helps security professionals make informed
decisions by providing meaningful and actionable insights. Account Tekaover Protection

Runtime Application Self

Protection (RASP)
Identifies compromised code and reveals data transfers
Actionable security insights
Client-Side Protection alerts users when a newly added service is detected, while Security-enabled application
automatically blocking ones that are known to be malicious. Any new service or changes delivery
are blocked until authorized, and if any JavaScript code is compromised, and attempts to
send data elsewhere, your security team is the first to know.

Learn more about

Safe, one-click deployment Imperva Application
As part of Imperva’s Cloud Application Security solution stack, the deployment of
Security at
Client-Side Protection is safe, simple, and fast. Once onboarded, detection starts in +1.866.926.4678 or
minutes, and websites receive all the benefits of extra client-side security with no at imperva.com
additional latency. More importantly, because it requires no code changes, it won’t
break your website.

Imperva is the
cybersecurity leader
that helps organizations
protect critical
applications, APIs, and
data, anywhere, at scale,
and with the highest ROI.

Data Sheet | Client-Side Protection imperva.com

+1.866.926.4678
Copyright © 2023 Imperva. All rights reserved