Barracuda Networks has announced the expansion of Barracuda Cloud Application Protection, its platform for Web Application and API Protection (WAAP).
The new release adds powerful new automated API Discovery and GraphQL security capabilities, augments Account Takeover Protection capabilities, and enhances the client-side protection feature set, Barracuda says.
Additionally, the integration of the Barracuda Web Application Firewall and the Venafi Trust Protection Platform adds the ability to continually automate machine identity management for TLS certificates to stop outages and make it easy to scale web application firewall usage.
"With this release, Barracuda Cloud Application Protection adds powerful new API security, account takeover protection capabilities, and client-side protection for our customers, driven by machine learning and other advanced technologies," says Tim Jefferson, SVP, Engineering for Data, Network, and Application Security at Barracuda.
"Every business needs this type of critical protection against API vulnerabilities and automated bot attacks."
According to Gartner, web applications, mobile applications and APIs are subject to increasing volumes of complex attacks. Security and risk management technical professionals responsible for application security architecture must use an appropriate mix of mitigating technologies to secure applications.
With this new release, Barracuda Cloud Application Protection includes continuous, automatic API Discovery using Machine learning to improve compliance and security. This capability greatly reduces the admin overheads of importing API specs and configuring protections, while allowing development teams to build and deploy secure APIs quickly.
Additional highlights of this release include:
New GraphQL security capabilities that include native parsing of such requests and enforcement of security checks to protect against GraphQL specific attacks.
New Privileged Account Protection (PAP), backed by a Machine learning layer, identifies risky logins and performs preconfigured actions to prevent Account Takeover attacks.
Enhanced Machine learning models in the Active Threat Intelligence (ATI) layer that powers Barracuda Advanced Bot Protection to identify and detect persistent bots. In addition, the configuration feedback loop from ATI has been improved, allowing admins to perform configuration actions from the cloud dashboard.
Improved controls for client-side protection over the configuration and visualisation of Content-Security Policies and Sub-Resource Integrity settings. Client-side protection capabilities in Barracuda Cloud Application Protection closely track the protective requirements that are being set to block attacks like Magecart and other website supply chain attacks.
New capabilities for Barracuda WAF-as-a-Service make administration actions easier. The new snapshots feature allows the import and export of configuration as a JSON file to enable easier integration with automation tools. In addition, admins can perform comparisons between snapshots and setup automatic snapshots for easier configuration management. The improved CDN UI provides new control and visualisation capabilities to customers using the CDN services.
The new technology integration of Barracuda Web Application Firewall and Venafi Trust Protection Platform offers a fully featured, unified solution that enables the secure, centralised, and automated management of certificates and keys across Barracuda Web Application Firewall. This integration adds security to the managed machine identities, and eliminates the anxiety and risk associated with certificate-related downtime and risks.