1、W H I T E PA P E RFrom WAF to WAAP:Akamais Approach to a Holistic App and API Security S|2Introduction 04Traditional definition of a WAF 05Challenges with a traditional WAF 06Design principles WAF to WAAP 07Akamais approach to WAAP 10 Moving beyond rulesets 10 Modernizing application-layer DDoS defe

2、nses beyond rate limiting 10 Single solution for comprehensive protection 11The Adaptive Security Engine 12 Adaptive threat detection 13 Automatic updates 13 Testing framework to ensure accuracy 14 Automatic self-tuning 15 Configuration and automation flexibility 15 Verify in the real world 16 Integ

3、rating modernized protections 16Application security and DDoS defense 18 Behavioral DDoS Engine:How it works 19 Application security accuracy 21 Client Reputation scores 22Malware protection 23Application security analytics 24API Discovery and Profiling 25C|3Bot visibility and mitigation 27 Bot visi

4、bility and mitigation intrinsic to App&API Protector 27 Key bot capabilities 28More than a WAF:Benefits from the Akamai solution 29 Threat intelligence and detection 30 Akamai platform intelligence 30 Threat research and incident response 31 Threat research 31 Incident response 31 Rapid threat detec

5、tion 31 CVE protection 32Globally distributed edge platform 33 Reliability and resiliency 33 Global scale 35 Performance 35 Edge platform powers protection 36 Managed Attack Support 37 Security Operations Command Center(SOCC)37Conclusion |4With increasingly large and diverse attack surfaces,growing

6、operational friction and cost,and continuously evasive multidimensional threats,security teams need visibility beyond the traditional web application firewall(WAF).Specifically,they need more automated tools to increase efficiency,and deeper protections in the app and application programming interfa