WAF – Web Protection without Interfering with the Application

 Solution advantages:

• Real protection of web applications based on protocol and application logic knowledge.
• Website protection with zero interference with the actual application (in many cases, code modifications are not possible whatsoever).
• The option to add a few important features – user authentication, integration with AD/RADIUS, SSO (Single Sign-On), access permission based on geolocation, once again with zero interference with the application code.
• Protection against automatic data downloading and robot activities (scraping, botnets, brute force attacks, etc.).
• Easy deployment with the ability to learn application logic based on its operation.

• Although the customer will strive to protect the input (perimeter) of its network, whether by means of a firewall or any other method, the customer has no other choice than keeping an open access to its website. Today, almost everything is accessible via a web interface – SAP, CRM, email, etc. Many applications (such as WordPress) also utilize third-party extensions. It is therefore virtually impossible to provide for full application security. The attackers are aware of this, and many of their attacks are thus aimed at websites (see OWASP TOP 10 open source initiative, which regularly evaluates the most significant risks in this respect).

• The impacts of inadequate application protection on the customer:

• Data theft (e.g. by means of SQL injection) and damage to the company or its customers (stolen credit card information, etc.).
• Modification of website content (loss of reputation or financial losses). Hackers can, for example, define special “discounts” on products in the company’s e-shop.
• Web blocking (financial losses).

A good WAF offers not only the maximum security, but also an easy implementation. It must be able to learn all information about the specific application itself, then evaluate risks and define precise rules.