Imperva Cyber Community

 View Only
  • 1.  Requirements for API setup WITH On-prem WAF

    Posted 03-30-2022 12:21
    Hello Impervians,

    Does WAF Onprem supports API? I cant find any docs except for the CWAF.
    https://support.imperva.com/s/document-item?bundleId=cloud-application-security

    How can we protect API that is residing locally (within the organization) thru On-prem WAF policies?

    TiA,
    A
    #On-PremisesWAF(formerlySecuresphere)

    ------------------------------
    Angfe Landagan
    IT Net/Sec
    Philippines
    ------------------------------


  • 2.  RE: Requirements for API setup WITH On-prem WAF

    Community Manager
    Posted 04-01-2022 08:31
      |   view attached
    WAF GW has Dynamic Profiling (positive security) that can protect APIs. Check out the technical brief below...

    https://www.imperva.com/resources/datasheets/TB_Dynamic_Profiling.pdf


    ------------------------------
    Sarah Lamont(csp)
    Digital Community Manager
    ------------------------------

    Attachment(s)

    pdf
    TB_Dynamic_Profiling.pdf   173 KB 1 version


  • 3.  RE: Requirements for API setup WITH On-prem WAF

    Posted 04-04-2022 04:05
    For in-path parameters, you can either work with URL patterns or use the API python library imperva has released in github https://imperva.github.io/imperva-sdk-python/examples.html#example-5-swagger-to-profile . The second solution requires a fully updated swagger file in order to work...

    ------------------------------
    George
    ------------------------------