A cloud-based web application firewall system and its security protection method

Abstract

The present invention provides a cloud-based WEB application firewall system which is formed by a cloud firewall engine and a firewall control center. The firewall control center configures and manages a cloud firewall engine which is arranged in a cloud formed by multiple extendible high-performance servers. The cloud firewall engine detects and intercepts the attack to an application layer. Compared with the prior art, the system has the advantages that: (1) the WEB application firewall system deployment can become effective only after a user reconfigures a DNS, which is convenient and fast, (2) the safety officer of a WEB application firewall system provider carries out unified configuration upgrade, and novel attack can be intercepted earlier than that of a traditional WEB application firewall, (3) when the WEB application firewall system performance has a bottleneck, only buying more cloud resources is needed, and buying equipment again to carry out redeployment is not needed. The invention also provides a security protection method with the use of the WEB application firewall system.

Description

technical field [0001] The invention relates to a cloud-based WEB application firewall system and a security protection method thereof. Background technique [0002] At present, traditional network layer firewalls cannot block application layer (such as http) attacks. Enterprises generally need to deploy WEB application firewalls (WAF) to detect and block application layer attacks. There are generally two types of WEB application firewalls, one is software The product does not need to be modified on the network, and is directly installed on the WEB application server. Since the performance of the WEB application firewall depends on the performance of the WEB application server and has requirements for the operating system of the WEB application server, it is generally used on small WEB applications; the other is For hardware products, the network needs to be transformed, and the hardware WEB application firewall should be connected in series to the network. [0003] Chinese...

AI Technical Summary

Problems solved by technology

[0005] 1. Cost issues. Traditional WEB application firewalls generally use a set of WEB application firewalls for a WEB application system

[0006] 2. Ease of use, the deployment and installation of the WEB application firewall requires professionals from product manufacturers to deploy and install, and it is difficult for non-professionals to operate;

[0007] 3. Upgrade and maintenance. Due to the endless methods of application layer attacks, the rule base of WEB application firewalls also needs to be updated in time to effectively block application layer attacks. Traditional WEB application firewalls are generally upgraded manually by maintenance personnel, but many enterprises are in short supply. Therefore, some rule bases are only upgraded once every six months, and some are never even upgraded.

[0008] 4. Performance. Traditional WEB application firewalls have performance bottlenecks. If you want to improve the performance of WEB application firewalls, you need to re-purchase a WEB application firewall with better processing performance to replace the existing WEB application firewall, resulting in waste of resources.

Images