Using Web Application Firewall to protect websites or apps is considered compliant.
Scenarios
Enterprises use Web Application Firewall to protect their websites and apps from web layer threats such as SQL injection and cross-site scripting attacks, ensuring data security and business continuity.
Risk level
Default risk level: high.
You can change the risk level as needed.
Detection logic
Using Web Application Firewall to protect websites or apps is considered compliant.
Rule details
Parameter | Description |
Rule name | Use Web Application Firewall to protect websites or apps |
Rule identifier | |
Automatic remediation | Not supported |
Rule trigger | Periodic: Every 24 hours |
Supported resource types | ACS::::Account |
Input parameters | None |
Remediation guidance
For more information, see Best practices for website protection.