Fortinet(R) Introduces Next-Generation Operating System for Web Application Firewall Product Family

Fortinet(R) Introduces Next-Generation Operating System for Web Application 
Firewall Product Family 
Also Launches New Enterprise-Class FortiWeb Appliances for Protecting
Critical Web Applications in Heavily Trafficked Environments 
SUNNYVALE, CA -- (Marketwired) -- 05/21/13 --  Fortinet(R) (NASDAQ:
FTNT) -- a world leader in high-performance network security -- today
introduced the next-generation operating system (OS) for its FortiWeb
Web application firewalls product family, providing important new
security advancements to protect against increasingly malicious
application layer attacks. The new FortiWeb 5 OS, which is backward
compatible with the entire FortiWeb family, features critical
security advancements that include the ability to accurately identify
the origin of Web application traffic to proactively distinguish
between legitimate and malicious sources. FortiWeb provides the
ability to distinguish between legitimate known search engine
requests, scanners, crawlers and other threshold based tools. This
expands the bot identification and analysis coverage recently
introduced with the FortiGuard IP Reputation service, which monitors
IPs that are compromised or behaving abnormally.  
Designed for MSSPs, ISPs and large enterprises 
In conjunction with the FortiWeb 5 rollout, Fortinet is also
introducing three new Web application firewall appliances: the
FortiWeb-3000D, FortiWeb-3000DFsx and FortiWeb-4000D, which are
designed for large enterprises, service providers and large
datacenters that require high performance Web application security.
The FortiWeb-3000D and FortiWeb-3000DFsx support up to 1.5 Gbps of
throughput while the FortiWeb-4000D supports up 4 Gbps. The new
appliances are 50 to 100 percent faster than their predecessors and
provide robust protection against the Open Web Application Security
Project (OWASP) Top 10 risks and aid in PCI DSS 6.6 compliance.  
Addressing Web Application Pain Points  
Because today's Web applications are being accessed and/or targeted
by automated scripting tools, scans, search engines and unknown or
malicious sources, security administrators need to quickly and easily
identify those sources and traffic types. This is critical to
distinguish good and bad traffic types and sources. FortiWeb
technology now provides a graphical dashboard to easily spot and
track bot traffic trends. 
Moreover, the need to protect against application layer DoS attacks
is increasingly important given the precipitous rise in attacks on
application resources. This is in stark contrast to hackers' previous
focus on disrupting network bandwidth. FortiWeb 5 expands the
previously released challenge response mechanism that distinguishes
legitimate Web application requests from automated DoS tools to
support in multiple different policies, providing better flexibility
and granularity. 
And as data centers continue their ongoing transition from IPv4 to
IPv6, the need to provide bi-directional support between the two
communications protocols is essential to maintaining optimal
security. FortiWeb 5.0 fully supports IPv4-to-IPv6 and IPv6-to-IPv4
What's New in FortiWeb 5  
What makes the FortiWeb product family unique is its ability to
combine broad Web application protection with Layer 7 load balancing
and a built-in vulnerability scanner in a simple-to-manage system
that does not require add-on licenses for each system component. 
FortiWeb 5 delivers new capabilities that include: 

--  Search Engine Identification: With up to 30% of Web application
    traffic requests coming from known search engines such as Google,
    Bing, Yahoo and others, coupled with a proliferation of automated
    attacks, botnets, zombies and orchestrated DDoS attacks, the need to
    correctly identify sources and their intention is vital. FortiWeb 5
    provides this capability so organizations can protect and optimize
    their Web applications accordingly. This feature also ties into the
    software's new bot control identification layer, which proactively
    identifies whether in-bound traffic is coming from legitimate search
    engines or botnets, anonymous proxies, malicious sources or large
    scale automated attacks
--  Bot Dashboard: As a complement to the bot control layer, the new bot
    dashboard provides security administrators an immediate visual
    snapshot of traffic hitting their Web applications so they can quickly
    ascertain whether bots crawling apps are known search engines or
    malicious scanners.
--  Real Browser Enforcement: As an enhancement to its application layer
    DoS protection, FortiWeb 5 enhances its Real Browser Enforcement
    challenge response action to better validate requests, ascertain the
    legitimacy of users and weed out automated DoS tools.

"The introduction of FortiWeb 5 and our new high end Web application
firewalls are designed for the most demanding enterprises and service
providers," said John Maddison, vice president of marketing for
Fortinet. "Not only are we introducing more intelligent protection
against the OWASP Top 10 threats, we're delivering new appliances
that leverage an application-aware load balancing engine to
distribute traffic and route content across multiple Web servers. The
FortiWeb product line combines the best of both worlds - the
industry's most advanced Web application security with optimal
 The FortiWeb 5 OS is now available as a
free update to all existing customers with a valid support contract
from The new FortiWeb-3000D,
FortiWeb-3000DFsx and FortiWeb-4000D are available today. 
Free Webinar
 To learn more about Fortinet's FortiWeb 5 operating
system and the FortiWeb-3000D, FortiWeb-3000DFsx and the
FortiWeb-4000D, please register here for a free Webinar: 
Event Number: 572 212 639 
About Fortinet (
 Fortinet (NASDAQ: FTNT) is a
worldwide provider of network security appliances and a market leader
in unified threat management (UTM). Our products and subscription
services provide broad, integrated and high-performance protection
against dynamic security threats while simplifying the IT security
infrastructure. Our customers include enterprises, service providers
and government entities worldwide, including the majority of the 2012
Fortune Global 100. Fortinet's flagship FortiGate product delivers
ASIC-accelerated performance and integrates multiple layers of
security designed to help protect against application and network
threats. Fortinet's broad product line goes beyond UTM to help secure
the extended enterprise -- from endpoints, to the perimeter and the
core, including databases and applications. Fortinet is headquartered
in Sunnyvale, Calif., with offices around the world. 
Copyright Copyright 2013 Fortinet, Inc. All rights reserved. The
symbols (R) and (TM) denote respectively federally registered
trademarks and unregistered trademarks of Fortinet, Inc., its
subsidiaries and affiliates. Fortinet's trademarks include, but are
not limited to, the following: Fortinet, FortiGate, FortiGuard,
FortiManager, FortiMail, FortiClient, FortiCare, FortiAnalyzer,
FortiReporter, FortiOS, FortiASIC, FortiWiFi, FortiSwitch, FortiVoIP,
FortiBIOS, FortiLog, FortiResponse, FortiCarrier, FortiScan, FortiAP,
FortiDB, FortiVoice and FortiWeb. Other trademarks belong to their
respective owners. Fortinet has not independently verified statements
or certifications herein attributed to third parties, and Fortinet
does not independently endorse such statements. Notwithstanding
anything to the contrary herein, nothing herein constitutes a
warranty, guarantee, binding specification or other binding
commitment by Fortinet, and performance and other specification
information herein may be unique to certain environments. This news
release may contain forward-looking statements that involve
uncertainties and assumptions. Changes of circumstances, product
release delays, or other risks as stated in our filings with the
Securities and Exchange Commission, located at, may cause
results to differ materially from those expressed or implied in this
press release. If the uncertainties materialize or the assumptions
prove incorrect, results may differ materially from those expressed
or implied by such forward-looking statements and assumptions. All
statements other than statements of historical fact are statements
that could be deemed forward-looking statements. Fortinet assumes no
obligation to update any forward-looking statements, and expressly
disclaims any obligation to update these forward-looking statements.  
Media Contact: 
Rick Popko
Fortinet, Inc. 
Investor Contact:
Michelle Spolver
Fortinet, Inc.
Press spacebar to pause and continue. Press esc to stop.