Barracuda Networks has announced the extension of Barracuda Cloud Application Protection, the platform for Web Application and API Protection (WAAP).
The new release adds powerful new automated API Discovery and GraphQL security capabilities, expands Account Takeover Protection capabilities, and improves client-side security features, said Barracuda.
Additionally, integrating the Barracuda Web Application Firewall and the Venafi Trust Protection Platform adds the ability to continuously automate machine identity management for TLS certificates to stop outages and make it easy to scale web application firewall usage.
“With this release, Barracuda Cloud Application Protection adds powerful new API security, account takeover protection capabilities, and client-side protection for our customers, powered by machine learning and other advanced technologies,” said Tim Jefferson, SVP of Engineering for Data, Network, and application security at Barracuda.
“Every business needs critical protection against API vulnerabilities and automated bot attacks.”
According to Gartner, web applications, mobile applications, and APIs are subject to increasingly complex attacks. Security and risk management technical professionals responsible for application security architecture must employ an appropriate mix of mitigation technologies to secure applications.
With this new release, Barracuda Cloud Application Protection includes continuous, automatic API Discovery using Machine Learning to improve compliance and security. This capability significantly reduces the administrative overhead of importing API specifications and configuring protections allowing development teams to build and deploy secure APIs quickly.
Additional highlights of this release include:
New GraphQL security capabilities, including native parsing of such requests and enforcement of security checks to protect against GraphQL-specific attacks.
New Privileged Account Protection (PAP), supported by a Machine Learning layer, identifies risky logins and performs pre-configured actions to prevent Account Takeover attacks.
Enhanced Machine Learning models in the Active Threat Intelligence (ATI) layer that powers Barracuda Advanced Bot Protection to identify and detect persistent bots. In addition, ATI’s configuration feedback has been improved, allowing administrators to perform configuration actions from within the cloud dashboard.
They improved client-side protection controls over configuring and visualizing Content-Security Policies and Sub-Resource Integrity settings. Client-side security capabilities in Barracuda Cloud Application Protection closely follow security requirements to block attacks such as Magecart and other attacks on the website supply chain.
New Barracuda WAF-as-a-Service capabilities make management actions easier. The latest snapshot feature allows importing and exporting configurations as a JSON file to allow easier integration with automation tools. In addition, administrators can perform snapshot comparisons and set up automatic snapshots for easier configuration management. The enhanced CDN user interface provides new control and visualization capabilities for customers using the services.
The new technology integration of the Barracuda Web Application Firewall and Venafi Trust Protection Platform provides a fully featured, unified solution that enables secure, centralized, and automated management of certificates and keys in the Barracuda Web Application Firewall. This integration adds security to the managed machine identities and eliminates the fear and risk associated with certificate-related downtime and risk.