Why WAPPLES?. 2009. 7. 21. Originality (1/3). WAPPLES versus other Web Application Firewalls(WAFs). WAPPLES. Strong Points. Fundamentally Unique Concept. In Korea, WAPPLES holds #1 WAF m arket share 、 over 60%!!. Higher Security Level ex) Can detect altered/unknown attacks.
2009. 7. 21
WAPPLES versus other Web Application Firewalls(WAFs)
#1 WAF market share、
Higher Security Level
ex) Can detect
Security by rules
Ease of Use
ex) No need for
Misdetection to 0%
High cost to maintain
ex) security level is in proportion
to the number of patterns
Possibility for misdetection
Misdetection can cause
WAPPLES is FUNDAMENTALLY DIFFERENT!
COCEP Engine(Logic Analysis Engine) Diagram
Strong points of Logic Analysis against Pattern Matching
Ex) SQL phrase including meaningless bypass code like [aaa’ or ‘1’=’1]
SQL phrase accessing vulnerable procedures or functions
Extremely low possibility of false positive
Validation request is needed to check the client’s capability for HTTP manipulation.
- Whether it can understand HTTP request header or not
- Whether it can process(create, update, and so on) a cookie or not
- Whether it can send a response for HTTP status request
These rules inspect http message not by simple pattern matching, but by evaluation of message data.
They can identify credit card number, e-mail, mobile number, bank account number, address and so on.
Ex) For credit card number, validate checksum by Luhn algorithm(ISO/IEC 7812-1:2006).