Web Application Firewall (WAF)
AI-driven protection of your sites, services & web applications.
The Oracle Dyn Web Application Firewall (WAF) is designed to protect web applications, meet compliance requirements, eliminate management complexity, and reduce operational costs for all organizations with Internet-facing web applications and services. Oracle Dyn WAF offers a flexible solution that is easily deployed and continuously managed. This guarantees ongoing monitoring and tuning of WAF security policies to maintain optimal performance and effective security for your web applications.
Oracle Dyn’s feature-rich web application security is 100% cloud-based. Configured as a reverse-proxy, the Oracle Dyn WAF inspects all traffic destined to your web application origin and identifies and blocks any malicious traffic. The Oracle Dyn solution is built across globally distributed POPs to ensure minimum latency and maximum coverage. Once under protection, your web application only accepts traffic from WAF nodes, completely isolating your origin from any threats.
Ready to learn more?
Download the Oracle Dyn Web Application Firewall (WAF) datasheet
Our WAF uses artificial intelligence to dynamically and automatically update security postures to protect web applications from vulnerabilities. Leveraging Oracle Dyn’s patent-pending mathematical model based on proprietary machine learning algorithms and big data analysis, the AI WAF inspects web traffic in real-time, identifies threats and behavior anomalies, and dynamically updates security postures accordingly.
Real Time SIEM Support
The Oracle Dyn WAF is able to integrate seamlessly with the most popular security information and event management (SIEM) platforms to leverage the aggregation of network and application threat intelligence. Oracle Dyn has developed an extensive SIEM integration framework that allows for the flow of event information from the WAF to leading vendors.
24x7 SOC with follow-the-sun operations
Oracle Dyn operates three security operation centers (SOC) around the world with 24x7 coverage and a two-hour overlap across shifts to ensure any open cases are transitioned seamlessly to the next shift. Leveraging automation coupled with the best cybersecurity talent in the industry, Oracle Dyn delivers continuous monitoring and immediate response in the event of an attack.
Web Application Security Policies: OWASP 10, PCI Compliance and Customizable Rules
Oracle Dyn WAF specifically focuses on the following OWASP 10 vulnerability groups:
- A1 – Injections (SQL, LDAP, OS, etc.)
- A3 – Cross Site Scripting
- A4 – Insecure Direct Object Reference
- A6 – Sensitive Data Exposure
- A8 – Cross Site Request Forgery
- A9 – Using Components with Known Vulnerabilities
- A10 – Invalidated Redirects and Forwards
PCI Compliance & App Specific Configurations
Oracle Dyn has created a set of application specific rules that address compliance requirements and vulnerabilities for ecommerce platforms, Drupal and SharePoint. The list is always growing!
Each client has the ability to create their own custom rules. Oracle Dyn works with clients to create unique rules during the onboarding process and includes the capability to create custom rules for all applications any time custom rules are required by the web application.
Ready to see Oracle Dyn WAF in action?
Find out how Dyn can help improve your application security.