Back Web Application Firewall German Web application firewall Spanish دیوار آتش برنامه‌های وب Persian Web application firewall French Web Application Firewall Japanese Web application firewall LMO Web Application Firewall Portuguese Файрвол веб-приложений Russian Web uygulaması güvenlik duvarı Turkish 網頁應用程式防火牆 Chinese

Web application firewall

This article is about a sub-type of an application firewall. For the article on application firewalls, see Application firewall. For the primary topic of firewalls, see Firewall (computing).

A web application firewall (WAF) is a specific form of application firewall that filters, monitors, and blocks HTTP traffic to and from a web service. By inspecting HTTP traffic, it can prevent attacks exploiting a web application's known vulnerabilities, such as SQL injection, cross-site scripting (XSS), file inclusion, and improper system configuration.[1] They can introduce a performance degradation without proper configuration and tuning from Cyber Security specialist.[2] However, most of the major financial institutions utilize WAFs to help in the mitigation of web application 'zero-day' vulnerabilities, as well as hard to patch bugs or weaknesses through custom attack signature strings.[3]

  1. ^ "Web Application Firewall". TechTarget. Retrieved 10 April 2018.
  2. ^ Stop deploying web application firewalls
  3. ^ Detecting zero-days before zero-day
From Wikipedia, the free encyclopedia · View on Wikipedia

Developed by Nelliwinne