WAAP

Web Application and API Protection
Core functions of Web Application and API Protection (WAAP)

Web App and API Protection (WAAP) is a specialised tool for protecting web applications and APIs (including web or micro services).

Core functions of a WAAP solution:

  • Bot Management: Protection against malicious bots (incl. automated attacks from vulnerability scanners or content scrapers).
  • Protection against DDoS attacks at application level (L7)
  • Web Application Firewall (WAF): Protection against web application attacks such as OWASP Top 10 vulnerabilities
  • API Protection: Defence against attacks and unauthorised access to internal and public APIs, incl. protection of OWASP API Top 10 vulnerabilities
  • Access Management: Modern WAAP solutions cooperate with an IAM system to offer upstream authentication and to achieve continuous adaptive trust.

In the past, these functions were often performed by separate components such as a web application firewall (WAF) or an API security gateway. Because the boundaries between APIs and web applications are becoming increasingly blurred, these markets have consolidated. A WAAP solution can be operated either in the cloud or on-premise.

Information for you

-Our whitepapers-

Study Application and API Security 2022

In a recent study in cooperation with CIO, CSO and COMPUTERWOCHE, Ergon Airlock looked at application and API security in the container environment.

Request study

Zero Trust is a journey

The digital transformation of the world continues to progress, and it is profoundly affecting private life and job profiles in a manner that was hard to imagine just a few years ago.

This whitepaper covers the effects of continuous digitization and its implications.

Request free of charge

Toward DevSecOps

In this whitepaper, you will learn the most important insights into how you can successfully and efficiently implement DevSecOps, which security components are required for this, and what benefits a microgateway architecture brings.

Request free of charge

Airlock 2FA - Strong Authentication. Easy.

The two-factor authentication in the area of IT security offers double the security.

Find out more about strong authentication and the possibilities that Airlock offers in our whitepaper.

Request free of charge

Further whitepapers

We provide whitepapers on these and other topics free of charge:

  • successful IAM projects
  • Compliance
  • Data protection (GDPR)
  • Introduction of PSD2
  • PCI DSS requirements
Request free of charge