WAF - The Cloudflare Blog (Page 2)

March 15, 2022 12:59PM

A new WAF experience

Security Week WAF Firewall Security User Research Product Design Design

The security landscape is moving fast. We invited users to help us shape a new WAF experience that enables us to evolve WAF to meet their demands and use cases...

December 14, 2021 5:48PM

Exploitation of Log4j CVE-2021-44228 before public disclosure and evolution of evasion and exfiltration

Log4J Log4Shell Vulnerabilities WAF Security

In this blog post we will cover WAF evasion patterns and exfiltration attempts seen in the wild, trend data on attempted exploitation, and information on exploitation that we saw prior to the public disclosure of CVE-2021-44228....

December 10, 2021 9:24PM

Secure how your servers connect to the Internet today

Cloudflare Zero Trust Cloudflare One Zero Trust Cloudflare Gateway Zero Day Threats Security WAF Log4J

The vulnerability disclosed yesterday in the Java-based logging package, log4j, allows attackers to execute code on a remote server. We’ve updated Cloudflare’s WAF to defend your infrastructure against this 0-day attack....

Sam Rhea

October 20, 2021 8:00PM

Traffic Sequence: Which Product Runs First?

WAF Page Rules Cloudflare Workers

Understand how Cloudflare product’s interact via the new dashboard addition ‘Traffic Sequence’....

Sam Marsh

June 15, 2021 3:42PM

Enable secure access to applications with Cloudflare WAF and Azure Active Directory

Partners Microsoft WAF

Cloudflare and Microsoft Azure Active Directory have partnered to provide an integration specifically for web applications using Azure Active Directory B2C...

May 11, 2021 2:00PM

Designing the new Cloudflare Web Application Firewall

The Cloudflare Web Application Firewall (WAF) protects websites and applications from malicious traffic attempting to exploit vulnerabilities in server software. It’s a critical piece of the broader security posture of your application....

By

Syeef Karim

WAF , Design , Product Design

March 30, 2021 4:30PM

Cloudflare’s WAF is recognized as customers’ choice for 2021

Cloudflare has been recognised as Gartner Peer Insights Customers’ Choice for WAF vendor in 2021 by Gartner....

By

Michael Tremante

Security , WAF , Gartner

March 29, 2021 2:00PM

A new Cloudflare Web Application Firewall

Today we are announcing a new Cloudflare Web Application Firewall for all Cloudflare paid zone customers....

By

Michael Tremante

Security Week , WAF , Firewall , Product News

March 07, 2021 12:47AM

Protecting against recently disclosed Microsoft Exchange Server vulnerabilities: CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065

Cloudflare has deployed managed rules protecting customers against a series of remotely exploitable vulnerabilities that were recently found in Microsoft Exchange Server....

By

Patrick R. Donahue
, Gabriel Gabor

Vulnerabilities , WAF , WAF Rules

February 19, 2021 12:00PM

Using HPKE to Encrypt Request Payloads

Allowing users to securely log parts of the request that match firewall rules while making it impossible for anyone else to decrypt....

By

Miguel de Moura
, Andre Bluehs

WAF , WAF Rules , Security , Firewall , Crypto

January 14, 2021 5:00PM

Holistic web protection: industry recognition for a prolific 2020

Today we’re excited to announce that Frost & Sullivan has named Cloudflare the Innovation Leader in their Frost Radar™: Global Holistic Web Protection Market Report....

By

Patrick R. Donahue

Bot Management , Speed & Reliability , Security , WAF , DDoS

December 11, 2020 3:00PM

Encrypting your WAF Payloads with Hybrid Public Key Encryption (HPKE)

Allowing logging for payloads that trigger the Web Application Firewall has always led to end-user privacy concerns. We built encrypted matched payload logging to solve this!...

By

Michael Tremante

Privacy Week , WAF , WAF Rules , Security , Firewall

September 24, 2020 12:00PM

Building even faster interpreters in Rust

Firewall Rules lets customers filter the traffic hitting their site, powered by our Wirefilter engine. We’re excited to share some in-depth optimizations we have recently made to improve the performance of our edge....

By

Zak Cutner

Firewall , Performance , Rust , SIMD , WAF

July 01, 2020 12:00PM

Making the WAF 40% faster

As with all Cloudflare security products, the WAF is designed to not sacrifice performance for security, but there is always room for improvement. This blog post provides a brief overview of the latest performance improvements that were rolled out to our customers....

By

Miguel de Moura

WAF , Performance