Application security is in the midst of a transformation. Virtually all enterprise applications
and assets have become web-facing whether in the form of a traditional web-application,
cloud applications, APIs, microservices, or legacy apps accessed through a web interface.
These applications are being continuously developed and delivered at unprecedented
speed, and are constantly being probed and attacked by human and automated threats.
In order for enterprises to move to a web-by-default approach to applications, they
must be able to deliver protection for all of their assets. This has proven to be virtually
impossible using existing technologies, which have alternately relied on signatures and
rules which are hard to manage, or application anomalies, which can miss threats. Let’s
briefly examine where the WAF has been and where ThreatX is taking it today.