Web Application Protection (WAP) uses attacks, audits,
and parameter names (keywords) from the Protocol Analysis Module (PAM)
engine to provide overall protection against web application security
attacks.
Configuring web protection
Use the Web Protection tab
on the Web
Application Protection page for the Network IPS appliance
to enable protection signatures that protect your web applications
from well-known web application security attacks.
Configuring shared tuning
Use the Shared Tuning tab
on the Web
Application Protection page for the Network IPS appliance
to list tuning parameters that the appliance ignores as protection
against the following signatures: Client-Side attacks, Injection attacks,
Malicious File Execution, and Cross-Site Request Forgery.
PAM-controlled security events and response filters
The Protocol Analysis Module
(PAM) controls X-Force Virtual Patch recommendations,
which
means that PAM controls many security events. PAM overrides settings
that are configured for some security events in the Web Application
Protection (WAP) policy. Use response filters to override PAM settings.
Web application protection categories
View information about the protection categories
for the Web
Application Protection feature for the Network IPS appliance.