Penta Security, a leading cybersecurity company, has enhanced its Cloudbric Managed Rules (CMR) for AWS WAF (Web Application Firewall), available on AWS Marketplace rule groups, by adding a new Protocol Validity Protection feature.
With the rise in attacks in how web servers handle requests (e.g. request smuggling), the demand for protocol-level protection has grown significantly. In response, Penta Security added protocol validity protection to its rule groups of AWS WAF, CMR. Unlike traditional attack detection-based approaches, this feature takes a preventive approach by verifying whether a protocol complies with standard request protocol formats, stopping the potential attacks at the source.
CMR is a WAF rule group subscribed through AWS marketplace providing predefined rules to users. AWS WAF requires technical expertise and knowledge to configure and manage, but with subscription of a rule group, even non-experts can manage WAF. Adding on to CMR’s originally featured protection against 6 threats such as OWASP Top 10, malicious IPs, bots, and API abuse, with the addition of Protocol Validity Protection, it now offers real-time validation of incoming requests to block request smuggling and non-standard HTTP methods or bypass attempts using header manipulation. As a result, improvement of web application security level without additional development is possible.
Jihae Lee, CCO (Chief Compliance Officer) of Penta Security, stated: “With enhanced ‘Cloudbric Managed Rule’, organizations can strengthen their defense capabilities against increasing complexity and risk of web threats. AWS Marketplace subscription allows fast deployment, helping customers improve both their security level and operational efficiency.”
