Bachelor thesis: Expansion of a reverse proxy to a web appli­cation firewall (WAF)

(m/w/d)

Web appli­cation firewalls (WAF) have become estab­lished for securing web appli­ca­tions. Independent commercial solutions are often used here. On the other hand, many reverse proxies based on an apache or nginx web server or Squid proxy are in use, which are also powerful tools.

A web appli­cation firewall (WAF) is a security solution developed to protect web appli­ca­tions from a variety of online threats. It acts as a kind of filter between the internet and the web appli­cation to detect and block malicious traffic patterns. Essen­tially, a WAF serves to protect vulner­a­bil­ities and security holes in web appli­ca­tions by blocking attacks such as cross-site scripting (XSS), SQL injection, distributed denial of service (DDoS) and other types of attacks.

A WAF analyzes the traffic reaching the web appli­cation using various techniques such as signa­tures, behav­ioral analysis and rules to detect suspi­cious activity. If it detects signs of an attack, it blocks the malicious traffic or redirects it without affecting legit­imate traffic.