WAFEC 2.0 and Why WAFs Fail?

Submitted by Ofer Shezaf on 23 February 2011 - 10:41pm
Share/Save

While securing web applications is a well understood need, and while WAFs have clear advantages over code review and testing such as immediate mitigation and higher automation, the WAF market is still a small market.

The attached presentation discusses this phenomenon, offers some explanations to and presented WAFEC, a project that tries to solve the issue.

Tags: 
Web Application Firewalls
WAFEC
Security Research Review
AttachmentSize
Why WAFs fail?348.63 KB

Post new comment

More information about text formats

Full HTML

  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.

Filtered HTML

  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <blockquote> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
By submitting this form, you accept the Mollom privacy policy.