Barracuda Networks, Inc announced the expansion of Barracuda Cloud Application Protection, its platform for Web Application and API Protection (WAAP). This new release adds powerful new automated API Discovery and GraphQL security capabilities, augments Account Takeover Protection capabilities, and enhances the client-side protection feature set. Additionally, the integration of the Barracuda Web Application Firewall and the Venafi Trust Protection Platform adds the ability to continually automate machine identity management for TLS certificates to stop outages and make it easy to scale web application firewall usage.
According to Gartner®, “Web applications, mobile applications and APIs are subject to increasing volumes of complex attacks. Security and risk management technical professionals responsible for application security architecture must use an appropriate mix of mitigating technologies to secure applications.”1
With the launch of new capabilities of WAAP, Barracuda Cloud Application Protection now includes continuous, automatic API Discovery using Machine Learning to improve compliance and security. This will greatly reduce the admin overheads of importing API specs and configuring protections, while allowing development teams to build and deploy secure APIs quickly.
Tim Jefferson, SVP, Engineering for Data, Network, and Application Security at Barracuda highlighted that “the all-new Barracuda Cloud Application Protection adds powerful new API security, account takeover protection capabilities, and client-side protection for our customers, driven by machine learning and other advanced technologies. Every business needs this type of critical protection against API vulnerabilities and automated bot attacks.”
Additional highlights of the new WAAP release include:
The new technology integration of Barracuda Web Application Firewall and Venafi Trust Protection Platform offers a fully featured, unified solution that enables the secure, centralized, and automated management of certificates and keys across Barracuda Web Application Firewall. This integration adds security to the managed machine identities, and eliminates the anxiety and risk associated with certificate-related downtime and risks.
“Before Barracuda WAF-as-a-Service, it’s almost like we were blind. We had no visibility into just how frequently we were being probed and attacked. Now going through the logs, our eyes have been opened, and it seems a wonder that we never suffered a serious breach in the past,” said Kieron Prince, Cloud and Infrastructure Lead at L&Q.
“Barracuda has earned a reputation for providing powerful, easy-to-use protection for web applications and APIs. These new enhancements provide our mutual customers with a higher level of protection against API, bot, and client-side attacks,” said Dave Sasson, Chief Strategy Officer at Hanu, an award-winning Microsoft Cloud services provider and Azure Expert MSP.