DATASHEET

Barracuda
WAF-as-a-Service
Protect every web app, hosted anywhere, in minutes.

Deploying and configuring traditional web application firewalls (WAFs) can be

prohibitively complex and time-consuming. Indeed, some simply install a WAF
in default mode for compliance, and never configure it correctly—leaving them
vulnerable to application-based threats.

You can deploy, configure, and get Barracuda WAF-as-a-Service up and

running in just minutes. Pre-built templates protect your applications
immediately, and an intuitive interface makes it simple to fine-tune specific
policies. Full-spectrum DDoS protection ensures continuous application
availability. And the built-in Barracuda Vulnerability Remediation Service
automatically scans your applications and remediates vulnerabilities.

Simple yet flexible Protection from Protection for

Barracuda WAF-as-a-Service features
an easy-to-use, five-step onboarding
wizard to ensure your applications are
protected in minutes. Effective pre-built
templates provide complete protection
for most commonly used applications.
Advanced users can easily assert
granular control over specific elements to
set customized security policies. Simply
add the configuration element you want
to fine-tune to the list of configuration
components and adjust them to meet
your specific needs.
next-generation attacks
The service is built on enterprise-proven
technology that defends against OWASP
Top 10 security risks, OWASP Automated
Threats to Web Applications, and more,
including zero-day threats. Advanced
bot defense stops automated attacks
such as web scraping, scalping, carding,
bot spam, and credential-stuffing/
account-takeover attacks. Unmetered
DDoS protection prevents both
application and volumetric DDoS attacks.
Rich analytics and intuitive reports help
you document compliance.
next-generation apps
Regardless of where you host
your apps—on-prem, in the cloud,
in a container, or in a serverless
environment—you get a REST API and
the Barracuda Vulnerability Remediation
Service, which scans for application
vulnerabilities and remediates them
with a single click. This ensures
uninterrupted, optimized security
even as you update your applications
and deploy new ones in response to
evolving business needs—without any
additional administrative overhead.

Barracuda Networks • DATASHEET • Barracuda WAF-as-a-Service NETWORK AND APP SECURITY

 Hackers/bots

Authorized users

App servers
Barracuda
WAF-as-a-Service
Remote/distributed
employees

Database servers
Barracuda Vulnerability
Remediation Service

Protects against all these threats: Other advanced security features:

• OWASP Top 10 Application Security Risks • IP reputation protection

-- Including SQL injections, XSS, CSRF, XXE, -- Including IP geolocation, and reputation feeds
and more based on sensors in the field and other inputs
• Advanced bots • File upload protection
-- Including the OWASP Automated Threats to -- Integration with Barracuda Advanced Threat
Web Applications Protection included
• Credential-stuffing/account-takeover attacks • Parameter tampering
• API attacks for XML and JSON APIs • Cookie/form manipulation
• Application and volumetric DDoS attacks • Forceful browsing
• Zero-day attacks • Application tampering
-- With a powerful positive-security model • Form field meta-data validation
combined with smart-signature technology • Website cloaking
for negative security • Response control
• Granular policies to HTML elements
Supported protocols • Protocol limit checks
• HTTP/S/0.9/1.0/1.1/2.0 • Barracuda IP reputation database
• WebSocket • Heuristic fingerprinting
• IPv4 • CAPTCHA challenges
• Slow client protection
• ToR exit nodes
• Barracuda blacklist
• Unmetered L3-L7 DDoS protection

DATASHEET • US 1.0 • Copyright 2019 Barracuda Networks, Inc. • 3175 S. Winchester Blvd., Campbell, CA 95008 • 408-342-5400/888-268-4772 (US & Canada) • barracuda.com
Barracuda Networks and the Barracuda Networks logo are registered trademarks of Barracuda Networks, Inc. in the United States. All other names are the property of their respective owners.