Security of cloud-native applications
A web application firewall (WAF) is a security solution designed to protect web applications from various cyber threats and attacks.
How does WAF work?
It functions as a barrier between the web application and the Internet through which monitoring, filtering and blocking of potentially malicious traffic is carried out with the aim of improving the security of web applications by identifying and blocking attacks, i.e. preventing the exploitation of application vulnerabilities.
New WAF solutions also provide the possibility of implementing mechanisms based on machine learning, in order to prevent Zero Day attacks.
Who is WAF for?
Implementing a WAF solution is a key aspect of a comprehensive web security strategy for companies that have publicly available web applications, as well as those that are governed by stricter security regulations for internal web applications.
WAF solutions are particularly useful in protecting against attacks that target vulnerabilities in web applications of all structures, both those developed in-house, custom applications developed on demand and legacy applications, as well as corporate (enterprise) application systems.
Recommended solutions and implementation
Coming provides its customers with two basic WAF models:
-
Dedicated (on-premise) WAF solution
It is realized in the form of a virtual machine or a physical device that is implemented in the user’s data center. In this case, the user has full control over defining policies and monitoring events. Licensing is done according to the annual or permanent subscription model. -
WAF as a service
It is implemented as a service within the Coming cloud environment. In this case, Coming’s team is in charge of setting security rules and conducting periodic monitoring and reporting. Licensing is realized as a service on a monthly basis.