An Adaptive Web Application Firewall
Publicated to:Secrypt : Proceedings Of The 19th International Conference On Security And Cryptography. 96-107 - 2023-01-01 (), DOI: 10.5220/0011146900003283
Authors: Calvo, M; Beltran, M
Affiliations
Abstract
Web Application Firewalls (WAFs) are security products responsible for protecting web applications with minimal cost and effort; by filtering, monitoring, and blocking HTTP traffic. Traditional WAFs work with a rule-based approach, applying predetermined rules when the signatures of known attack patterns or traffic anomalies are identified. This kind of design has suffered significant limitations in specific contexts since it is impossible to configure the WAF the first time and rely on that configuration over time. This paper proposes an adaptive WAF capable of context-aware risk-based adaptation, changing its configuration to every specific scenario, depending on the current value of risk indicators and on the level of risk tolerated at any given time. The proposed solution is implemented. validated and evaluated in a real use case.