Barracuda Networks, Inc., today launched Cloud Application Protection platform 2.0 with significant new capabilities to deliver an additional level of protection and make it even easier for organizations to secure their applications in a digitally transformed world. Platform blocks supply chain attacks, uses machine learning to stop bad bots, adds containerized WAF to protect apps deployed in containers.
Cloud Application Protection is Barracuda’s platform for Web Application and API Protection (WAAP).The new services and features include client-side protection, the ability to deploy containerized WAF nodes, and an auto-configuration engine. In addition, Cloud Application Protection now leverages machine learning, vulnerability scanning and remediation, and Advanced Threat Protection to provide active threat intelligence for more powerful protection.
According to Gartner: “By 2023, more than 30% of public-facing web applications and APIs will be protected by cloud web application and API protection (WAAP) services, which combine distributed denial of service (DDoS) protection, bot mitigation, API protection and web application firewalls (WAFs). This is an increase from fewer than 15% today.”
Highlights of Cloud Application Protection 2.0 include:
Client-Side Protection — This new feature automatically creates and deploys protections against website skimming and supply chain attacks such as MageCart. These types of attacks are performed by infecting a script that is loaded directly by the browser, meaning that WAFs are unable to detect them. Cloud Application Protection 2.0 adds both protection and reporting capabilities against these attacks.
Containerized WAF deployment — This new deployment option brings the same security engine as Barracuda WAF and WAF-as-a-Service, but in a container form. As more applications are now deployed in containers, they can now be protected.
Auto-Configuration Engine — The Auto-Configuration Engine uses machine learning models to check an organization’s traffic patterns and provide recommendations to tighten security settings, reducing administrative overhead.
Active Threat Intelligence — This cloud-based machine learning-enhanced service provides near real-time active threat intelligence to detect and stop new threats as they occur. Barracuda Active Threat Intelligence brings together the Barracuda Vulnerability Manager, Barracuda Vulnerability Remediation Service, Barracuda Advanced Threat Protection, and Barracuda Advanced Bot Protection’s cloud layer, making it a single service that covers the full range from detection to remediation.
In addition to these features, Cloud Application Protection 2.0 adds an Azure Sentinel integration that allows defenders to quickly see the most important information in the specific context, allowing for rapid responses. Customers can also choose to create rules on Azure Sentinel to perform configuration tasks using the WAF API to close the feedback loop when newer attacks are detected.