Difference between Web Application Firewall (WAF) and WebInspect (452 Views)
Reply
Occasional Contributor
Posts: 6
Registered: ‎09-24-2012
Message 1 of 2 (452 Views)
Accepted Solution

Difference between Web Application Firewall (WAF) and WebInspect

[ Edited ]

Hi,

I'd like to know what are the differences between WAF and WebInspect?

If a company already had WAF, do they need WebInspect or not?

Thanks

Esteemed Contributor
Posts: 630
Registered: ‎07-01-2008
Message 2 of 2 (394 Views)

Re: Difference between Web Application Firewall (WAF) and WebInspect

HP WebInspect is a proactive testing tool used to high-light coding flaws expressed as web application security issues.  Its ultimate goal is to help  developers identify and fix these issues so that their live code is hardened and able to withstand attack, whether coming from external or internal sources.

 

"WAF" stands  for "web application firewall" which is generally an in-line appliance or software that detects malicious web application specific attacks and blocks them on the perimeter.  HP TippingPoint is a major product family in the WAF market, and is capable of absorbing HP WebInspect scan results to be used as blocking rules in the interim period that it takes for the development team to fix the issues high-lighted.


-- Habeas Data
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.