WAF

Web Application Firewall

Domain 3: Security Architecture

Security control that filters and monitors HTTP traffic between a web application and the Internet. Protects against XSS, SQLi, and other web attacks.

Exam Tip

WAF is Layer 7 (application layer). Regular firewall is Layer 3/4. WAF stops web attacks.

Related Terms

Firewall Web Security OWASP
VPN WPA3