Web Access Firewall (WAF)

 Features

  • Designed to protect internet-facing web applications
  • Uses a layered approach to protect web applications against cyberattacks
  • Over 250 predefined Open Web Access Security Project (OWASP), application, and compliance-specific rules
  • Administrators can add their own access controls based on geolocation, whitelisted and blacklisted IP addresses, and HTTP URL and Header characteristics
  • Bot management provides a more advanced set of challenges, including JavaScript acceptance, CAPTCHA, device fingerprinting, and human interaction algorithms
  • Oracle WAF policies can be a unique per domain, per app, per cloud

Use cases

  • Protect any internet-facing endpoint from cyberattacks and malicious actors
  • Protect against cross-site scripting (XSS) and SQL injection, activities that allow attackers to gain unauthorized access to privileged information
  • Bot management – dynamically blocking bad bots
  • Protection against layer 7 distributed denial-of-service (DDoS) attacks
  • Aggregated threat intelligence from multiple sources including Webroot BrightCloud

Use the access controls

  • Control access, based on HTTP header information. Block requests if the HTTP header contains specific names or values or allow traffic with proper HTTP regular expression
  • Control access based on URL address matching or partial matching or match proper URL regular expressions

Comments

Post a Comment

Popular posts from this blog

Exam Study

 In the left side sections (Study Guide), you will find a list of subjects that helps in the exam study.  I will be adding more pages to cover other subjects. Being an OCI Architect requires practical experience. I advise you to get a free account to practice your knowledge. To get OCI free access, follow this link Using the Oracle documentation, this study guide and practicing in your free Oracle OCI instance should help you to accomplish your goals and pass the OCI Architect Exam.  If you have questions, let me know in the comments and I will try to help.
Read more