Which security model should a Citrix Engineer implement to make sure that no known attack patterns pass through Citrix Web App Firewall?
Which security model should a Citrix Engineer implement to make sure that no known attack patterns pass through Citrix Web App Firewall?
The negative security model is designed to block known vulnerabilities and attack patterns using signature-based detection. This model relies on a database of known attack signatures to identify and mitigate threats, making it suitable for ensuring that no known attack patterns pass through Citrix Web App Firewall.
Correction; should be D: Negative; Negative security model uses a rich set signatures to protect against L7 and HTTP application vulnerabilities. That is, looking for patterns in known attacks, which is what the signature update does.
D negative security model; keyword is "known"
C: Positive https://docs.citrix.com/en-us/citrix-adc/current-release/application-firewall/deploymentguide.html
D negative security model; keyword is "known"
https://docs.citrix.com/en-us/tech-zone/learn/poc-guides/citrix-waf-deployment.html The negative security model employs vulnerability signatures to prevent known attacks.
The Negative security model is designed to block known vulnerabilities and attack patterns based on a database of signatures, which makes it suitable for this particular requirement.