Web Application Firewalls

Why they are important?

Benefits by WAF?

How they work?

Security prevent malicious uploads. User experience: accelerate performance. Complexity: security is place on on single device not server by server. Compliance: Giolocation

Security since understand how threats work

Accelerates network with web cashing and ssl uploading.

Simplify operations

A web application firewall (WAF) is an application firewall for HTTP applications. It applies a set of rules to an HTTP conversation. Generally, these rules cover common attacks such as cross-site scripting (XSS) and SQL injection. While proxies generally protect clients, WAFs protect servers

Akamai Technologies Kona WAF

84 thousand servers around the world

Attacks are block at their origin

OWASP

The Open Web Application Security Project

Worldwide not-for-profit organization focused on improving the security of software.

As a community, OWASP issues software tools and knowledge-based documentation on application security.

Sec Tools

WebScarab

OWASP ZAP

The OWASP Top 10 Most Critical Web Application Security Risks are:

A1 Injection: Injection flaws, such as SQL, OS, XXE, and LDAP injection

A2 Broken Authentication and Session Management: compromise passwords, keys, or session tokens

A3 Cross-Site Scripting (XSS)Untrusted data in a web page, which can hijack user sessions, deface web sites, or redirect the user to malicious sites.

A4-Broken Access Control:Restrictions on what authenticated users are allowed to do are not properly enforced

A5-Security Misconfiguration

A6 Sensitive Data Exposure.Many web applications and APIs do not properly protect sensitive data,

A7-Insufficient Attack Protection

A8-Cross-Site Request Forgery (CSRF)

A9-Using Components with Known Vulnerabilities

A10-Underprotected APIs

click to edit

once you say magic word: caching, you'll get a banch of questions about it... how it works, where is it located and so on. Also, waf itself is actually slowing traffic, not accelerating, so don't even say it. It is because waf is checking request, means it has to read the entire thing, this takes time, so actually answer will come a bit later. There are some special options we use, but you don't even have to mention those, as you don't know it. So... forget acceleration part...

Man, better don't even mention it. You will be eaten here... Say you know, there's a lot of servers, which can apply waf as close to user as possible and stop here. There's actually about 250000 servers on our network now, but again, don't even try to say it

All owasp info is not that important. Don't kill yourself here.

WAF

Cisco ACE Webapplication Firewall

CloudFlare

Fortiweb Web application Firewall

F5 WAF

Barracuda Web Application Firewall