Web application firewalls are regarded as a special case of classic protection software and are primarily used to defend against attacks on web applications. They are also known as Web Shield or Application Layer Gateway.
By monitoring communication at the application level, intrusion attempts via SQL and command injection, cross-site scripting and other unwanted behavior are detected and blocked before execution.
In order not to disrupt normal operation unnecessarily, the Web Application Firewall is often operated purely passively in an upstream learning phase and unauthorized actions are recorded in a log file. Based on this file, you can then decide whether the Web Application Firewall works as expected or whether additional special rules need to be defined.
Once it is up and running, the Web Application Firewall provides protection for all applications behind it at the same time. This also applies to applications from other providers whose source code cannot be accessed or to legacy systems that are no longer maintained.
Despite all these advantages, protection software should never be trusted blindly or seen as a substitute for secure programming. Because a web application firewall cannot offer absolute protection even with continuously updated filter rules.
The experts at sic[!]sec GmbH have a sound market overview of the products of various WAF manufacturers, know the specific advantages and disadvantages, as well as the optimum application areas, so that we can offer you manufacturer-neutral advice for your special use cases.