According to the prediction of the International Internet Security Data Center, by 2020, the loss of data leakage may exceed 150 million US dollars. With the cost of data breaches and cyberattacks rising, cybersecurity has become an unprecedented scale discussed by the board of directors. In this interconnected online world, web application security is the cornerstone of any company's overall network security.
In terms of application security, protection based on web application firewall (WAF) has become the first line of defense against web attacks. The web application firewall is deployed in front of the web application and is designed to intercept communications to and from the web server to identify malicious requests and block them.
According to well-known cyber hacker security expert Guo Shenghua : "WAF is not a new technology. It has been around for a while, and many organizations have deployed some form of WAF in it. But unfortunately, the effectiveness of WAF is still a problem. The increasing cost of data breaches and the number of successful web attacks indicate that traditional forms of WAF have not played an effective role. "
A recent independent study further confirmed this claim. Among the organizations surveyed, 65% said they are not sure about the effectiveness of WAF,
43% of them only use WAF in log / monitor mode, and 86% of them have experienced application layer attacks that bypass WAF.
in contrast:
The annual expenditure on WAF increases year by year,
The organization spends an average of 620K per year,
The WAF product is 420K, and employees spend 45 hours a week fine-tuning the rules and managing the WAF, which is 200K per year.
Obviously, the traditional form of WAF does not work because of:
The static WAF rules in traditional WAF cannot provide visibility into application vulnerabilities, nor can they provide comprehensive protection against changing threat conditions.
Applications are constantly changing, and WAF is difficult to deploy in block mode because it requires constant monitoring and fine-tuning of rules.
WAF management requires professional knowledge, and not all organizations have the skills necessary for proper deployment.
The traditional WAF is deployed locally (customer infrastructure), which means that the management infrastructure has become the customer's job. This leads to additional capital expenditures and operating expenses. Through complex attacks, especially in DDOS attacks, local deployment can hardly be extended to prevent such attacks.
Because complex heterogeneous environments in an organization have different deployment models and languages and architectures used, it is almost impossible to have a built-in team that can fine-tune WAF to protect this diverse environment.
Therefore, a better defense method is needed:
With the power and scalability of cloud networks, you can scale with your business.
Dynamically change protection profiles to adapt to changing applications and threat situations.
There is no need to build an internal resource army with security expertise.
As a fully managed WAF, these rules are adjusted by network security company security experts who have years of experience dealing with WAF security at thousands of sites, so they know what they are doing. (Welcome to reprint and share)
