Web Application Firewall

WHAT IS A WEB APPLICATION FIREWALL?

A web application firewall (WAF) is a network defense that filters, monitors, and blocks HTTP traffic to and from a web application. Unlike a regular firewall that serves as a safety gate between servers, a web application firewall is able to watch application-level traffic and decide to allow or disallow based on the data that is visible over the network. WAF security typically performs SSL termination to watch decrypted traffic for pattern-matching or volumetric attacks. Organizations often deploy WAFs to detect and block known threats, but these alone cannot protect modern applications from exploitation.

What are Some Types of Web Application Firewalls?

WAFs may come in the form of an appliance, a server plugin, a filter, or a WAF operated by a cloud or service provider. Web application firewalls can be customized to an application, but the effort to perform this customization can be significant and needs to be maintained as the application is modified. The ideal solution is one that provides continuous visibility, application intelligence, and very rapid response.

Back to Listing

BY USE CASE

BY DEPARTMENT

BY INDUSTRY

GITHUB ACTIONS BLOG SERIES, PART 1: PIPELINE NATIVE CODE ANALYSIS

Contrast Security recognized as a Visionary by Gartner in Application Security Testing.

Contrast Incident Response Hub

Web Application Firewall

WHAT IS A WEB APPLICATION FIREWALL?

What are Some Types of Web Application Firewalls?