Date Added: Feb 2010
As hackers moved from attacking the network to attacking the deployed applications, a category of products known as Intrusion Prevention Systems (IPS) emerged as a solution to provide the necessary protection. However, as these attacks have grown in sophistication and target Web-based applications, the security offered by IPS solutions falls short on multiple accounts due to their core technological design of matching attack signatures against the traffic coming into the network. Since one Web application differs from another, using simplistic pattern matching does not suffice. Securing against the latest Layer 7 Web attacks requires the security solution to be aware of Web application constructs and also to be aware of application context.