F5 Distributed Cloud WAAP
A solution for securing web applications and APIs across diverse environments.
| Category | API Security |
|---|---|
| This page updated | a month ago |
| Pricing Details | Contact for pricing details. |
| Target Audience | Organizations seeking to secure web applications and APIs across diverse environments. |
The F5 Distributed Cloud Web Application and API Protection (WAAP) addresses the complex challenge of securing web applications and APIs across diverse and distributed environments, including on-premises, public clouds, and edge locations. This solution is built on Volterra's distributed cloud architecture, integrating F5's Web Application Firewall (WAF), Shape's Bot Defense, and AI/ML-enabled API security and DDoS mitigation modules.
Technically, the WAAP leverages a SaaS-based model, providing both signature and behavioral-based threat detection. It acts as an intermediate proxy to inspect application requests and responses, mitigating a broad spectrum of risks such as those listed in the OWASP Top 10, threat campaigns, malicious users, layer 7 DDoS threats, bots, and automated attacks. The WAF engine, shared with BIG-IP Advanced WAF and NGINX App Protect WAF, comes with a comprehensive suite of features to defend against advanced threats like Log4Shell and MOVEit vulnerabilities without requiring special configuration beyond the default policy settings.
Operationally, the WAAP simplifies security management through centralized orchestration and oversight, integrating protections into the development process. It utilizes AI/ML to monitor client interactions, reducing false positives and identifying high-priority threats. The solution also supports micro-segmentation and advanced security at the application layer, using IP reputation and allow/deny lists to block malicious clients. Deployment can be managed through a simple UI or automated via APIs, with the option for 24x7 managed services by certified F5 experts.
Key considerations include the need for timely signature updates and the potential for increased maintenance overhead in multi-cloud environments, although the WAAP's design aims to minimize this through automated processes and self-service operations. The platform's global transit backbone and regional edge compute points of presence (PoPs) ensure robust connectivity and performance across different deployment locations.