Join OWASP and the Cloud Security Alliance for our annual joint meeting.
Topic: Effectiveness of Web Application Firewalls to Protect Against the OWASP Top 10
Web Application Firewalls (WAF) are essential components of a secure web application deployment. Capable of filtering network traffic on all OSI layers, they understand web specific communication protocols and programming languages. In addition, many WAFs can now generate rules and policies based on legitimate network traffic analysis, making them easier than ever to deploy. In a nutshell, if you are not using one already, you probably need one! But these specialized firewalls are not the silver bullets they sometime claim to be. When vendors say that their WAF enables organizations to be protected against the OWASP Top 10 most critical web application security risks, is this really accurate?