SYSTEM AND METHOD FOR AUTOMATED CONFIGURATION OF APPLICATION FIREWALLS

摘要

In a system for configuring a web application firewall, one or more parameters of the firewall are adjusted such that a test configured for exposing a vulnerability of an application protected by the application firewall is blocked by the firewall and another test configured to invoke functionality of the application but that does not expose or exploit any security vulnerability is not blocked by the firewall. A notification is provided to a user if such a firewall configuration is not found after a specified number of attempts.

主权项

1. A method for configuring an application firewall, the method comprising the steps of:
(a) receiving in memory a current application firewall configuration; (b) transmitting to the application, through the application firewall, a first test that is adapted to expose an identified security defect in the application; (c) if the application firewall fails to block the transmission of the first test to the application, determining a modification to a first parameter of the application firewall and adjusting the first parameter according to the determined modification, so as to block the transmission of the first test to the application; (d) transmitting to the application, through the application firewall, a second test adapted to invoke a functionality of the application and determining if the functionality was invoked according to a benchmark.