Most Helpful Review
Find out what your peers are saying about F5 Advanced WAF vs. Imperva SecureSphere Web Application Firewall and other solutions. Updated: September 2019.
371,639 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
This solution is an enterprise-class firewall that provides both load-balancing and security.
The anti-bot protection is the solution's most valuable feature. Safe-guard or credential staffing are also useful features.
This solution inspects your traffic and based on that, automatically create distinct qualities for you, so you can add this to the policy already created. That's what I like most.
The solution isn't too expensive. The license allows you to license what you need and leave out what you don't need.
I definitely recommend this solution because of the time you save on analysis.
The best solution for WAF.
With F5 Advanced WAF, it was protection for online publications and for our customers that caused us to choose the platform.
The most valuable feature is artificial intelligence and to get extra internal access.
Compared to other web application firewalls in the market, Imperva does things in the most accurate way.
The dynamic profiling of websites is the solution's most valuable feature. The security is also good.
Data masking is the most valuable feature of this solution.
The solution is very scalable. It is one of the most important features. You can also expand resources and features as well.
There are some features that are configured by default, so even without doing much, it can still provide a level of protection.
It mitigates all of the availabilities of risks around web applications.
The compliance is the most valuable aspect.
It has threat intelligence and we are using Incapsula. With threat intelligence, we can separate HTTP and HTTPS traffic. We can use Incapsula to send all the threat intelligence to the WAF.
This solution can be made more user-friendly.
The solution's dashboard could be improved. When you're moving from policy to policy, the logs and the integration of the logs in other systems aren't straightforward.
I would not expect traffic details to pass through the web application firewall across the length of the whole application. I think that there is a web application where it can let the application function without traffic going in into the WAF.
The solution is tedious. It takes a lot of discrete settings so one needs to get detailed and granular when they use the solution. It takes you a whole lot of energy and concentration to configure. It needs to be much more straight-forward, like other web solutions.
One thing that can be improved, is to increase the quantity over predefine policy.
I think the deployment templates can be better.
F5 Advanced WAF needs better integration within the application, like remote dashboards.
The administrator's user interface and some of the settings can sometimes be very complicated to understand.
I think that better bot protection is needed in this solution.
It would be useful if the solution used more intelligence in attack protection. For example, firewalls are to be dependent on the configuration, but if they could have some data science around it the solution would be even better. The profiling of the traffic, and making decisions surrounding that should be intelligence-based, instead of being based on the configuration of the firewall itself.
Some of the features should be included in the next release is a file integrating monitoring tool. This feature should be improved.
The initial setup could be simplified. Every time you have to install the solution you have to get in touch with support or somebody that can to do that for you.
It would be helpful to have a "recommended deployment", or even a list of basic features that should either be used or turned on by default.
Their portal is very limited and needs improvement.
It's a complicated tool to keep.
There could be some limitations that from the converged infrastructure perspective: when you want to converge with everything and you want Imperva to get there easily because it's not a cloud component. For example, when you want to build servers and you're using OneView to manage your software-defined networks, implementing Imperva right away is not that simple. But if you're doing just a simple cloud infrastructure with servers in there, you're good to go. Also, we are not able, with Imperva, to block by signatures. Imperva by itself needs to be complemented with another service to do URL filtering.
Pricing and Cost Advice
Licensing fees for this solution are paid on a yearly basis.
After buying the program, you just pay for the support every year.
I think the price is very high.
The pricing is too high.
The cost of this solution depends on the platform.
Everybody complains about the price of this solution.
Make sure you understand the way that Imperva charges. It's very affordable. However, I would like to see a package with the Virtual Patching included. You get to do patching separately.
out of 38 in Web Application Firewall (WAF)
Average Words per Review
out of 38 in Web Application Firewall (WAF)
Average Words per Review
Compared 90% of the time.
Compared 10% of the time.
Compared 38% of the time.
Compared 26% of the time.
Compared 9% of the time.
At F5, we give our customers the freedom to securely deliver every app, anywhere—with confidence. All F5 products are highly programmable and integrate into any environment, whether on premises or in any cloud. To date, 48 of the Fortune 50 companies rely on F5 to deliver apps that customers and employees can securely access at any time, on any device, from any location.
Web application attacks deny services and steal sensitive data. Imperva Web Application Firewall (WAF) analyzes and inspects requests coming in to applications and stops these attacks.
Protect your applications in the cloud and on-premises with the same set of security policies and management capabilities. Safely migrate apps while maintaining full protection.
Deploy Imperva WAF on-premises, in AWS and Azure, or as a cloud service itself. Easily meet the specific security and service level requirements of individual applications.
Imperva WAF protects against the most critical web application security risks: SQL injection, cross-site scripting, illegal resource access, remote file inclusion, and other OWASP Top 10 and Automated Top 20 threats. Imperva security researchers continually monitor the threat landscape and update Imperva WAF with the latest threat data.
Learn more about F5 Advanced WAF
Learn more about Imperva SecureSphere Web Application Firewall
|MAXIMUS, Vivo, American Systems, Bangladesh Post Office, City Bank||BlueCross BlueShield, eHarmony, EMF Broadcasting, GE Healthcare, Metro Bank, The Motley Fool, Siemens|
No Data Available
Software R&D Company30%
Comms Service Provider9%