Announcing the Platform.sh WAF
One of the best features of a Software as a Service platform (like Platform.sh) is the regular, automatic upgrades. When the system gets better it gets better for everyone, and often at no extra cost to you.
Today we're happy to announce our latest new feature, already available and deployed for all Platform.sh Enterprise customers: A Web Application Firewall (WAF) framework.
A WAF is an application-level security tool, designed to filter incoming requests by looking at their content and rejecting known-bad or known-hostile requests before they even reach the application. That provides better security faster, as the application never even sees the bad request.
WAFs can range anywhere from rudimentary blocking of trivial malformed requests up to complex machine learning heuristic analysis AI buzzword-compliant behemoths. We've implemented ours as an extensible system that will allow us to grow an analysis and blocklist over time. For now it's just blocking malformed requests, such as
application/json requests that contain malformed JSON. We will be adding to that list as time goes on, however, as we confirm invalid requests that we can reliably detect and block.
Sounds great, what do I need to do to get it?
Nothing. You already have it. We deployed it last Friday. (Because when else are you going to deploy features?)
This is just our latest effort to give our customers the peace of mind they deserve.