How Web Application Firewalls Are EvolvingSignal Sciences' Andrew Peterson on How WAFs Can Support Application Security
Web application firewalls usually have not been a part of the DevSecOps conversation, but that's changing, says Andrew Peterson of Signal Sciences.
"WAFs historically have never been part of that [application security]. So WAFs have always lived on production, focused on protection but never focused on visibility. Now we are trying to focus on that visibility and not only giving it back to security teams but bringing it directly to developers," Peterson says.
In a video interview with Information Security Media Group at RSA Conference 2019 in San Francisco, Peterson discusses:
- Different challenges with WAFs;
- How next-generation WAFs tie to DevSecOps;
- Factors to consider while investing in WAFs.
Peterson is CEO of Signal Sciences and was a co-founder. In 2016, O'Reilly published the book, "Cracking Security Misconceptions" to help encourage non-security professionals to take part in organizational security.