Skip to main content
  • Industry Solutions
    • Managed Service Providers
    • Enterprise Solutions
    • Developers & Startups
    • Healthcare
    • Trading and Financial
      • Chicago Managed Trading Servers
      • Trading and Financial Colocation: Chicago & New Jersey
    • IBM AS/400 and iSeries Users
  • Support
    • Register
    • View Tickets
    • Submit a Ticket
    • Knowledgebase
    • News
  • Steadfast Blog
  • Steadfast Podcasts
  • Contact Us
Home
  • Call Us
  • Call | 888.281.9449
  • Login
  • Search

This form logs you into your management portal account. To access your help desk account, click here and use the form to the right of the news.

  • Cloud Hosting
    • Cloud Hosting
    • Private Cloud
    • Hybrid Cloud
    • Public Cloud
    • Cloud Storage
      • Secure File Share
      • Wasabi Cloud Storage
    • Virtual Data Center Platform
  • Managed Hosting
    • Bare Metal Dedicated Servers
      • Deep Learning GPU Dedicated Servers
      • Linux Dedicated Servers
      • Windows Dedicated Servers
    • Virtual Private Servers
    • Data Center Colocation
      • Managed Colocation
      • Chicago: 350 E Cermak
      • Chicago: 725 S Wells
      • Edison, New Jersey
    • Security & Compliance
      • Managed Firewall
      • SSL VPN
      • DDoS Protection
      • Email Security
  • Backup & Disaster Recovery
    • Backup
    • Disaster Recovery
    • Veeam Backup & Replication
    • Veeam Cloud Connect
    • Wasabi Cloud Storage
  • Why Steadfast
    • Why Steadfast?
    • About Steadfast
      • Our History
      • News and Press
    • Data Centers & Network
      • Our Data Centers
      • Our Network
      • Network Test
      • Peering Policy
    • Customer Stories
    • Service Level Agreement
  • Industry Solutions
    • Managed Service Providers
    • Enterprise Solutions
    • Developers & Startups
    • Healthcare
    • Trading and Financial
      • Chicago Managed Trading Servers
      • Trading and Financial Colocation: Chicago & New Jersey
    • IBM AS/400 and iSeries Users
  • Support
    • Register
    • View Tickets
    • Submit a Ticket
    • Knowledgebase
    • News
  • Steadfast Blog
  • Steadfast Podcasts
  • Contact Us
Close
Return to All Blog Posts
How Does A Web Application Firewall Protect Your Business’s Applications

How Does A Web Application Firewall Protect Your Business’s Applications?

October 12, 2016 in
Managed IT

As businesses transition from traditionally-licensed enterprise software to software-as-a-service applications hosted in the cloud, the security of the application layer becomes ever more critical.

Protecting the application layer is often beyond the scope of traditional intrusion detection and prevention systems, which brings web application firewalls to the fore. A web application firewall helps protect HTTP-based applications from external attack by monitoring and filtering connections that appear suspicious.

SaaS interfaces present a clear risk to businesses. They’re an obvious target for criminals, presenting any number of opportunities for attack. Once an attacker gains access to a SaaS account, they may be able to exfiltrate sensitive user data. In the worst cases, SaaS vulnerabilities may allow an attacker to run code remotely or gain access to the underlying server environment. From there, it’s a short hop to the database and to other components of a company’s network.

In fact, SQL injection is often an attacker’s favorite technique. Most Software-as-a-Service applications allow some form of user input. Coding errors can give attackers the ability to inject unescaped SQL code via the app’s web interface or API.

The most common attacks against web applications are cross-site scripting attacks. In this case, a lack of proper escaping and input validation allows an attacker to embed JavaScript code that is loaded and run by clients that request the page. XSS scripting attacks are often used to steal authentication cookies, giving attackers access to, and potentially control over, a site.

Web application firewalls are intended to prevent attacks of this sort. A WAF monitors all incoming connections between HTTP clients and an application. They filter connections according to a configurable set of rules, including those capable of blocking most SQL injection and cross-site scripting attacks. WAF protection is particularly crucial for web applications that provide access to sensitive medical or financial data.

To consider a pertinent example, the popular WordPress plugin W3 Total Cache was recently discovered to have a serious cross-site scripting vulnerability. The plugin fails to escape content submitted to a support form as URLs parameters. If an attacker causes an admin user to open a crafted link with embedded JavaScript, the admin user’s authentication credentials are at risk of being stolen. It’s estimated that more than a million WordPress sites are vulnerable to this attack.

A Web Application Firewall is capable of filtering this type of attack by escaping attempts to inject JavaScript or dropping suspicious connections before they hit the application. Attackers are, of course, always looking for ways around the protection that WAFs offer, which is why it’s important to keep the firewall’s rules up-to-date.

A Web Application Firewall is an important component of a defence-in-depth approach to online security.

Steadfast makes a powerful Web Application Firewall available to its Managed Security clients.

Share This
facebook twitter email compact

Comments (0)

Leave a Comment

Get an image next to your comment by visiting Gravatar.com and uploading a profile photo that links to your address.

Search the Blog

Categories

backup
(1)
bare metal
(1)
Business Talk
(23)
Chicago
(11)
Chicago colocation
(1)
Cloud
(34)
cloud backup
(1)
cloud services
(2)
colocation
(4)
colocation services
(1)

Archives

  • August 2022 (1)
  • March 2022 (3)
  • October 2021 (1)
  • January 2021 (1)
  • July 2020 (1)
  • June 2020 (1)
  • April 2020 (1)
  • March 2020 (1)
  • August 2019 (1)
  • July 2019 (1)

Follow Us

  • Facebook
  • Twitter
  • LinkedIn
  • RSS Feed
  • 312.602.2689
  • ColoHouse Sales
  • Facebook
  • Twitter
  • YouTube
  • LinkedIn

Services

  • Cloud Hosting
  • Managed Hosting
  • Backup & Disaster Recovery

Solutions By Industry

  • Enterprise Solutions
  • Trading & Financial
  • Healthcare
  • Developers & Startups
© 2023 Steadfast
  • Log In
  • Site Map
  • Legal Info & Privacy Policy