Imperva Cyber Community

Cloud WAF : Cookie Poisoning/Tampering protection

  • 1.  Cloud WAF : Cookie Poisoning/Tampering protection

    Posted 30 days ago
    Hi, 

    Is there any way to configure cookie protection policy like Cookie Signing Policy or Profile Policy's cookie tampering rule in SecureSphere?
    The current available filters in custom rule seems to allow putting static value to check only.
    Is there a way to make Cloud WAF remember web application's cookie for each session and prevent it from being altered?

    Thanks.

    #CloudWAF(formerlyIncapsula)

    ------------------------------
    Worachat Sarsa
    SE
    Exclusive Networks TH
    Huaykwang
    ------------------------------