Security Information and Review

Collection of security information and review

Hardening Web Base Application with Web Application Firewall

Author : Admin

Web Base Application, currently is not become a trend but also a solution in the online system. So, we need to hardening and improve our web base application security with web application firewall, as web application security threats and vulnerabilities to prevent data theft and manipulation of private / sensitive corporate and customer information by attackers. Web application firewalls are generally operate as proxies between clients and web servers. All requests and optionally responses are checked for patterns that indicate attacks against the provided web base application. The matching parts of the requests with the pattern or rule in the web application firewall, the request will be deleted or not forwarded to web base application. If a request is denied, an appropriate error is risen and delivered as a HTTP response to the client browser.

 

 

Web application firewall as proxy can either as a reverse proxy or as a transparent proxy. In the case of a reverse proxy SSL connections have to be terminated on the web application firewall in order to be able to parse and check requests in clear text. In the case of a transparent proxy the SSL keys have to be stored at the web server and additionally on the transparent proxy. The web application firewall is subsequently able to read and decrypt the SSL handshake between the web server and its clients, extract the session keys and subsequently check all transmitted data.

Web Application Security Diagram

Web Application Security Diagram

 

 

In the secures web base application, web application firewall enforce security policies to seamlessly detect threats, generate security events and block internal and external attacks on critical corporate data with minimal impact. There are two common function of web application, encrypting data and filtering with based on regular expressions. First major function of web application firewall are URL, cookie and form field encryption. All URLs, cookies and form field values that are transmitted from web server to the client are intercepted and replaced by encrypted values. A second major function of web application firewall, its filtering base on regular expressions. All request contents are checked against with regular expressions that describe common attack pattern by web application firewall administration.

 

 

An additional function of web application firewall, integrated with intrusion prevention ( like intrution detection system – IDS ). First, web application firewall doesn’t block any request to analyses and learn traffic patterns typical for the web application to be protected. Second, if it’s enough data has been collected, web application firewall with the learned pattern are used to generate a positive rule allowing all learned traffic and blocking everything else.

 

 

There are many web application firewall in the market but in this discussion we will only be disclosed four of the web application firewall such Phion Airlock, Artofdefence Hyperguard, Breach Security ModSecurity and Radware AppWall. See detail information at next article.

 

 

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Netvouz
  • DZone
  • ThisNext
  • MisterWong
  • Wists
  • Technorati
  • YahooMyWeb
  • Slashdot
  • StumbleUpon
Categories: Web Application Security
 

[...] of the famous web application firewall is Phion Airlock. It’s web application firewall which will protect and prevent attacker to access data.  Airlock web application firewall ( WAF ) [...]

 

[...] is a latest-generation enterprise Web application firewall with attack detection and attack protection functions that are freely configurable. Hyperguard [...]

If you like this posts, please leave messages / comments.