The recently released “Bot Defense” report provides a leading perspective for thwarting automated threats. The paper developed by the leading IT research firm Enterprise Management Associates (EMA) lays the foundation on the numerous threats posed by bad bots.
Key observations describe how automated threats from bad bots can attack user accounts in nefarious ways. These malicious attacks exploit API’s beyond normal application protection and out of scope of web application firewalls (WAFs).
WAFs are limited in scope and provide inadequate protection to match the sophistication of malicious threats. WAFs block some portion of bots, however are less effective against sophisticated bad bot attacks and cannot sufficiently defend against the OWASP automated threat list.
WAFs are purpose built and designed for application security with rule and policy based protections that do not scale against large scale bot attacks. Bots are designed to exploit a broad range of issues. For instance, bots can attack user accounts and logins in numerous ways, perform advanced reconnaissance, create man-in-the-middle attacks, perform data mining, and exploit APIs, all of which are beyond normal application protection and outside of the scope of WAFs.
User complaints and dissatisfaction with WAFs are primarily attributed to:
- Cost/effort to deploy and manage relative to the benefits
- Inadequate visibility to automated threats
- Too many false positive alerts
- Time consuming on-going management that requires regular tuning
To learn why traditional security WAF defense methodologies struggle to address automated threats and how advanced bot defense techniques can protect against malicious threats download the EMA Bot Defense white paper.
About the AuthorMore Content by Jaweed Metz