What are Web Application Firewalls? Definition & Usage

Learn why Top Industry Analysts consistently name Okta and Auth0 as the Identity Leader

A web application firewall, or WAF, protects your web applications against common attacks. A WAF isn’t a standalone security solution, as it’s often used in concert with other tools (such as traditional firewalls). But a WAF can help save time when your app is under threat.

What is a WAF?

A web application firewall, or WAF, is designed to shield your web application from outside threats. 

What is a web app? Everything from the social media site you visit to the email program you use is programmed and delivered on an app. As you might imagine, these programs are very attractive to hackers. They'd like to get into all of the data stored within an app. A WAF makes hacking harder. 

A WAF can be a physical appliance (like a server) or a virtual tool (like a cloud). It's installed between your app and the internet, and it inspects traffic moving in and out. A WAF can:

  • Control. Security rules you design and implement determine traffic movement. 
  • Block. Customised rules filter out traffic you deem dangerous. 
  • P