Positive Security and Learning
Tags: The WAF guidebookPositive SecurityPositive security model is a comprehensive security mechanism that provides an independent input validation envelope to an application. By defining rules for...
View ArticleSignature & Negative Security
Tags: The WAF guidebookA negative security model (or misuse based detection) is based on a set of rules that detect attacks rather than allow only valid traffic. The Core Rule Set discussed in this...
View ArticleWhat is a Web Application Firewall?
Why a Definition?Web applications firewalls are not new. The 1st one was introduced in 1997. But web application firewalls did not receive significant market attention until recently.One of the primary...
View ArticleSecure Development Life Cycle
Tags: The WAF guidebookAs web application security is essentially a software quality problem, resolving it require fixing the way we develop, deploy and operate software. This process is usually...
View Article