Posts

Firewall Management Maturity Process

  Firewall Management Maturity Stage 1: Basic Firewall Management A firewall comes with base configuration instructions that provide some level of immediate protection. The firewall remains one of the key components of any company’s security approach and should be configured to take full advantage of all its functionality. Firewalls, out of the box, come with the base policy configuration designed to get up and running. Once traffic begins traversing through the firewall, the inevitable question arises – has it been configured effectively, and does it provide optimal protection based on the vendor guidelines and the specific environment? We conduct a firewall policy audit, during which, we look for policy conflicts, aging and many other factors that can impact firewall’s ability to effectively secure the network. Firewalls also produce a lot of event data. Some of it is benign, and some could represent a valid security risk. A robust SIEM or expert analysis will give the ability to...
Post a Comment
Read more

Web Application Firewall – An introduction

Image
  What is a Web Application Firewall (WAF)? A Web Application Firewall (WAF) helps protect web applications by  filtering and monitoring  HTTP traffic between a web application and the Internet traffic and by  blocking  bad HTTP traffic, malicious web service requests, and automated botnets attack. By inspecting the traffic, it can prevent attacks exploiting a web application’s known vulnerabilities, such as SQL injection, cross-Site Request Forgery (CSRF), cross-site scripting (XSS), DDoS attacks, cookie poisoning, file inclusion, improper system configuration, and more. While proxies generally protect clients,  WAFs protect servers from most common attacks faced by web applications . A WAF is deployed to protect a specific web application or set of web applications. A WAF can be considered a reverse proxy protecting the servers from exposure by having clients pass through the WAF before reaching the server. WAFs are especially useful to companies that pro...
Post a Comment
Read more