Manual Chapter : Overview: Adding F5 Fraud Protection Service to the BIG-IP system

Applies To:

Show Versions Show Versions
Manual Chapter

Overview: Adding
F5 Fraud Protection Service
to the BIG-IP system

F5 Networks security provides Fraud Protection Service (FPS), which detects and protects users from fraud attacks such as malware and phishing. Using layered security, automatic engine updates, and a 24/7 security operation center (SOC), FPS rapidly detects phishing attacks as they are being set up, monitors the fraudulent activity, and documents the incident. Users can view fraud incidents by means of alerts sent to the FPS Dashboard.
FPS offers five components for protecting web and mobile applications:
  • Malware detection
  • Phishing detection
  • Application layer encryption
  • Automated transaction protection
  • Mobile security
In order to use FPS in the BIG-IP system, you need to activate the FPS license from tmsh, create an anti-fraud profile, create a virtual server, and associate the anti-fraud profile with that virtual server.
  • The FPS Main JavaScript protects web applications with the content type
    text/html
    and
    application/xhtml+xml
    . If your web application is based on a different content type, you cannot apply the FPS Main JavaScript protection on it.
  • In most cases, the virtual server that you will create for your anti-fraud profile will be an SSL virtual server.
  • All of the tasks described in this section, except for creating an initial anti-fraud profile, should also be performed when creating a mobile security anti-fraud profile.