Apigee Edge vs. Imperva Web Application Firewall (WAF)

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Apigee Edge
Score 8.0 out of 10
N/A
Apigee Edge is an API management platform now owned and offered by Google, since Google acquired Apigee in 2016.N/A
Imperva Web Application Firewall (WAF)
Score 8.4 out of 10
N/A
The Imperva Web Application Firewall (WAF) is based on technology acquired with Incapsula and the former WebSphere WAF.N/A
Pricing
Apigee EdgeImperva Web Application Firewall (WAF)
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Apigee EdgeImperva Web Application Firewall (WAF)
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
Apigee EdgeImperva Web Application Firewall (WAF)
Considered Both Products
Apigee Edge
Chose Apigee Edge
Apigee is the best in the market in terms of API Analytics Apigee is having wonderful Documentation with short videos Security is a major concern and Apigee provides an easily configurable policy to secure API Quota and rate-limit is again very easy to configure on every API …
Chose Apigee Edge
Nothing really. This is the first time I've heard and use such technology. Its equivalent in a Spring Framework really is Netflix Zuul at best. But still Apigee Edge as a platform is still much easier to use and develop APIs from. Considering I could easily on-board developers …
Chose Apigee Edge
A Node server as a proxy that uses JSON Web Tokens would be more maintainable than Apigee.
Chose Apigee Edge
Amazon API's gateway does not have easy to set up policies and exception handling. It does not have a tracking mechanism. However, it is better to use AWS API's gateway if you have tight integration with AWS tools.
Chose Apigee Edge
Somewhere in the middle. Based on its current offerings and subscription model
Imperva Web Application Firewall (WAF)
Chose Imperva Web Application Firewall (WAF)
Ultimately, it was the easiest to work with that was still a "known" company (we've been burned too many times by up-and-comers). We needed something that gave us a lot of control but then didn't need its handheld on a daily basis. Imperva gives us a lot of that and we are …
Features
Apigee EdgeImperva Web Application Firewall (WAF)
API Management
Comparison of API Management features of Product A and Product B
Apigee Edge
9.4
Ratings
12% above category average
Imperva Web Application Firewall (WAF)
-
Ratings
API access control9.00 Ratings00 Ratings
Rate limits and usage policies9.00 Ratings00 Ratings
API usage data9.00 Ratings00 Ratings
API user onboarding9.90 Ratings00 Ratings
API versioning9.90 Ratings00 Ratings
Usage billing and payments9.00 Ratings00 Ratings
API monitoring and logging9.90 Ratings00 Ratings
Best Alternatives
Apigee EdgeImperva Web Application Firewall (WAF)
Small Businesses
NGINX
NGINX
Score 9.2 out of 10
Cloudflare
Cloudflare
Score 8.7 out of 10
Medium-sized Companies
NGINX
NGINX
Score 9.2 out of 10
F5 Big-IP Advanced WAF
F5 Big-IP Advanced WAF
Score 9.3 out of 10
Enterprises
NGINX
NGINX
Score 9.2 out of 10
F5 Big-IP Advanced WAF
F5 Big-IP Advanced WAF
Score 9.3 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Apigee EdgeImperva Web Application Firewall (WAF)
Likelihood to Recommend
9.0
(0 ratings)
8.2
(0 ratings)
Likelihood to Renew
9.0
(0 ratings)
-
(0 ratings)
Usability
9.0
(0 ratings)
8.2
(0 ratings)
Support Rating
6.0
(0 ratings)
9.1
(0 ratings)
User Testimonials
Apigee EdgeImperva Web Application Firewall (WAF)
Likelihood to Recommend
Apigee has been great when managing the quota based access to the APIs. It is really good and suitable when considering proxying the in-house server endpoints access with the way it provides security with API Key validation and OAuth.
Read full review
If you are looking for a cheap product to meet the bare minimum requirements for PCI or any other compliance regulations, this is not the product. Also, the WAF portion only inspects on HTTP/HTTPS traffic which can be very limiting into other forms of web apps that utilize other protocols. The HTTP/HTTPS inspection that it does do is very in depth and well worth the investment.
Read full review
Pros
  • Manage user access, we can allow specific access to users based on their need and even customize requests of services based on user requirements.
  • Allow branding, so that SFO can maintain its look and feel but still get the support and functionalities we need from Apigee.
  • Integrates well with other platforms we use.
Read full review
  • Alert Aggregation - Correlates different violations into perceived correlated attacks.
  • Ease of deployment - as one of the only WAFs that allow bridge mode deployment, this can be deployed with without downtime and no Network Architecture modifications. If the need for proxy is required at a later time, Transparent Reverse Proxy can be deployed within seconds and minimal configuration.
  • Custom Policies - Custom security policies are easy to configure.
  • Reporting - There are a good amount of pre-configured reports available by default.
Read full review
Cons
  • Might need to bring in more features that a gateway performs, such a orchestration to some extent.
  • May seem to be costly at start for small scale enterprises.
Read full review
  • The UI can use a little work (but is largely decent)
Read full review
Likelihood to Renew
I am not the one deciding whether to use apigee or not really. But personally, I would recommend the use of it as developing APIs on it is easy. And as a mediator between backend servers, we could easily modify request and responses in it without touching any backend code while having a centralize gateway to access our backend APIs too.
Read full review
No answers on this topic
Usability
Support has helped us to resolved all the queries and community support was also good.
Read full review
There are just a couple of points that are hard to find, that probably could be elsewhere. But these are minor; everything else is right where you'd expect it to be.
Read full review
Support Rating
Quite hard to get support, at least on the coding side, when we encounter blockers. But general concerns, they would schedule a call to you for them to get a whole picture of your concern. Albeit in my experience, bad really as they haven't replied about the progress, but otherwise seems to have been fixed.
Read full review
We haven't needed support from Imperva since implementation. But during that time, their personnel were very quick to respond to questions. Since then, it's been largely doing its thing for us (which is exactly what we'd hoped).
Read full review
Alternatives Considered
Apigee is the best in the market in terms of API Analytics Apigee is having wonderful Documentation with short videos Security is a major concern and Apigee provides an easily configurable policy to secure API Quota and rate-limit is again very easy to configure on every API basis It provides various policies to transform the response from one form to another form e.g. JSON to XML or XML to JSON
Read full review
Ultimately, it was the easiest to work with that was still a "known" company (we've been burned too many times by up-and-comers). We needed something that gave us a lot of control but then didn't need its handheld on a daily basis. Imperva gives us a lot of that and we are still able to navigate it with ease.
Read full review
Return on Investment
  • Unruly, difficult to maintain, unable to test, difficult to troubleshoot and debug. Every ticket that requires Apigee work increases stress and anxiety.
Read full review
  • Our on-prem firewall has less work to do, allowing it more cycles for other tasks.
  • We have better web traffic visibility and control over what actors are doing outside our network.
Read full review
ScreenShots