{rfName}

Indexed in

License and use

Citations

1

Altmetrics

Grant support

This research has been partially supported by the Madrid region (EdgeData, Grant Ref. P2018/TCS4499). Miguel Calvo is supported by grants from the Rey Juan Carlos University (ref. C-PREDOC21-007).

Analysis of institutional authors

Share

September 26, 2022
Publications
>
Proceedings Paper
No

An Adaptive Web Application Firewall

Publicated to:Secrypt : Proceedings Of The 19th International Conference On Security And Cryptography. 96-107 - 2023-01-01 (), DOI: 10.5220/0011146900003283

Authors: Calvo, M; Beltran, M

Affiliations

Univ Rey Juan Carlos, Dept Comp, ETSII, Madrid, Spain - Author

Abstract

Web Application Firewalls (WAFs) are security products responsible for protecting web applications with minimal cost and effort; by filtering, monitoring, and blocking HTTP traffic. Traditional WAFs work with a rule-based approach, applying predetermined rules when the signatures of known attack patterns or traffic anomalies are identified. This kind of design has suffered significant limitations in specific contexts since it is impossible to configure the WAF the first time and rely on that configuration over time. This paper proposes an adaptive WAF capable of context-aware risk-based adaptation, changing its configuration to every specific scenario, depending on the current value of risk indicators and on the level of risk tolerated at any given time. The proposed solution is implemented. validated and evaluated in a real use case.

Keywords

Adaptive controlsRisk-based securityWeb application firewall

Quality index

Impact and social visibility

From the perspective of influence or social adoption, and based on metrics associated with mentions and interactions provided by agencies specializing in calculating the so-called "Alternative or Social Metrics," we can highlight as of 2025-07-04:

  • The use of this contribution in bookmarks, code forks, additions to favorite lists for recurrent reading, as well as general views, indicates that someone is using the publication as a basis for their current work. This may be a notable indicator of future more formal and academic citations. This claim is supported by the result of the "Capture" indicator, which yields a total of: 22 (PlumX).