Akamai Diversity

The Akamai Blog

Challenging the WAF Status Quo

Akamai is proud to have recently improved its position in the "Challengers" quadrant of Gartner, Inc.'s Magic Quadrant for Web Application Firewalls*.

Gartner states: "By year-end 2020, more than 60% of public Web applications protected by a Web application firewall (WAF) will use WAFs delivered as a cloud service or Internet-hosted virtual appliance -- up from less than 15% today."
We feel this represents important recognition of our differentiated approach to offering Web Application protection "in the cloud" as opposed to "in the data center." As a "Challenger," we believe this also demonstrates an increase in customers that are embracing Akamai's approach as a viable, effective option for their business.

In addition to using the industry-leading Akamai Intelligent Platform to put web application protection closer to malicious actors - and thus farther away from a business' data center - we believe there are several other capabilities unique to Akamai that set our WAF services apart. Key among these capabilities are:

Kona Rules - Akamai's Threat Intelligence Team develops and updates WAF rules continually to address new and emerging web application attacks, such as SQL injections, cross-site scripting, remote file inclusion and other attack vectors. Customers using Kona Site Defender's default Web Application Firewall rules configuration experienced, on average, 96 percent accuracy based on measurements that use the Matthews Correlation Coefficient (MCC) scoring.

Application-Layer Controls - A collection of pre-defined, configurable application-layer firewall rules address categories such as Protocol Violations, Request Limit Violations, HTTP Policy Violations and more. Policy-based rules which are enforced after the execution of application layer controls can also be created.

Client Reputation - Available as an added layer of protection available to Kona Site Defender customers, Client Reputation can automatically block requests from IP addresses that Akamai has determined as having a "bad reputation." The level of probable maliciousness is based on dozens of heuristics run against a database of more than 20 TB of daily attack data. Access to this level of intelligence related to specific IP address behavior helps our customers make more informed decisions about which traffic to watch carefully, which traffic to let through and which traffic to block - with extreme prejudice.

If you're interested in learning more about Akamai's approach to web site and web application security, please visit https://www.akamai.com/us/en/solutions/products/cloud-security/ or read 7 Questions to Ask Before Buying a Web Application Firewall.


*Gartner "Magic Quadrant for Web Application Firewalls" Analyst(s): Jeremy D'Hoinne, Adam Hils, Greg Young, Nicole Papadopoulos, July 15, 2015