1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

IDG Contributor Network: Web Application Firewall: a must-have security control or an...

Discussion in 'CSO' started by RSS, Feb 16, 2016.

  1. RSS

    RSS New Member Member

    A Web Application Firewall (WAF) is probably one of the most popular preventive and/or detective security controls for web applications today. Garter’s Magic Quadrant (MQ) 2015 for Web Application Firewalls estimates that the global WAF market size is as big as $420 million, with 24 percent annual growth.

    PCI DSS 3.1 requirement 6.6 suggests WAF deployment as an alternative to vulnerability scanning: “Installing an automated technical solution that detects and prevents web based attacks (for example, a web application firewall) in front of public facing web applications, to continually check all traffic”. ISACA’s “DevOps Practitioner Considerations” includes WAF into the 10 key security controls companies need to consider as they embrace DevOps to achieve reduced costs and increased agility.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page