Akamai Diversity

The Akamai Blog

Miguel Serrano

Miguel Serrano

December 16, 2015 11:07 AM

WAF: Threat Intelligence, the brain behind the machi ...

First time I jumped into a plane I was around 10 or 12 years old. The crew, moved by my innocent face and my dazzle, gave me a great gift: they allowed me to enter into the cabin where the pilot was commanding the flight. This is what I saw:

Miguel Serrano

Miguel Serrano

December 14, 2015 1:39 PM

WAF: Visibility into attacks and adaptability to cha ...

In previous posts WAF: False Positives vs. False Negatives and WAF: trade-off between false positives and false negatives, we talked about the importance of WAF accuracy and the strategy that Akamai follows when developing the system of proprietary rules (Kona Rule Set or KRS) that govern the WAF.

Or Katz

Or Katz

December 14, 2015 11:38 AM

Playing Hide and Seek In the Cloud

When we were young, we had fun playing hide and seek. As 5 year olds there were a limited number of places our friends could hide, and we could methodically check each one and then giggle when we found them. As we grew older, we expanded the boundaries of the game. Today, as security researchers, hide-and-seek is no longer so fun because the boundaries are nearly infinite. How do you

Miguel Serrano

Miguel Serrano

December 11, 2015 11:38 AM

WAF: trade-off between false positives and false neg ...

In the previous article, we introduced, arguably, the most important metric to measure WAF quality (in subsequent entries we will talk about WAF performance). But we left one question flying in the air: How can we achieve that our WAF rules provide a virtually null False Positive rate, keeping at the same time a very low percentage of False Negatives?

Akamai

Akamai

December 10, 2015 11:12 AM

Web Security in Healthcare Matters

It's hard to miss all the media attention surrounding data breaches in healthcare. If you're involved in information security at a healthcare organization, it's no surprise to you that more than 143 million individuals have been affected by data breaches since HHS started tracking incidents in September 2009.

Miguel Serrano

Miguel Serrano

December 9, 2015 1:47 PM

WAF: False Positives vs. False Negatives

I said in my last article that one of the key factors when it comes to judging the effectiveness of a WAF is accuracy. There is a metric that, measured in an objective way, provides an unmistakable view of quality and accuracy of a WAF solution: false negatives and false positives.

Bill Brenner

Bill Brenner

December 8, 2015 6:33 AM

Now Available: Q3 State of the Internet Security Rep ...

The Q3 2015 State of the Internet Security Report is now available for download at www.stateoftheinternet.com/security-report. Among the highlights: a continued upward trend in DDoS attacks, and attacks fueled by the easy availability of DDoS-for-hire sites that identify and abuse exposed Internet services, such as SSDP, NTP, DNS, CHARGEN, and even Quote of the Day.

Miguel Serrano

Miguel Serrano

December 7, 2015 10:38 AM

WAF. Under myth-busters' scrutiny.

Tangina Barros, the medium in the Poltergeist film series, taxes and Internet security. These three things have in common that they scare, they intimidate and they may keep you awake at night. With regards to the first two topics, the only thing I can do is remember that Poltergeist is just a movie, seriously, just a movie (I keep saying that to convince myself, quite unsuccessfully, though) and that

Akamai

Akamai

December 3, 2015 11:16 AM

Web Security Lacking at Hospitals

While hospitals are ramping up security efforts to protect information, a large percentage of them are vulnerable to attacks on their web sites. Less than two-thirds of hospitals participating in a recent survey reported having on-premise web application firewalls in place, and fewer than half reported having defenses in place to thwart distributed denial of service (DDoS) attacks. Read more here.