ASM - Dynamic SQL Injection Protection

Question

Hello All,&nbsp;
&nbsp;We know that big IP ASM can protect against SQL Ijnection attacks. &nbsp;
&nbsp;But Does it protect against "Dynamic SQL Injection Attacks"? If yes , how does it do it. &nbsp;
&nbsp;Any reply will be greatly appreciated.
&nbsp;Nik

hooleylist · Answer

Hi Nik, 
&nbsp;  
&nbsp; ASM is positioned between HTTP clients and the front end web server tier.  So ASM doesn't validate web app to SQL communication.  It does look for suspicious user input using attack signatures, character set validation, size limits, etc.  This should be the same whether the web app is using dynamic SQL queries or not. 
&nbsp;  
&nbsp; Aaron

Forum Discussion

ASM - Dynamic SQL Injection Protection

1 Reply

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Beyond REST: Protecting GraphQL

L7 DoS Protection with NGINX App Protect DoS

Managing NGINX App Protect WAF for Beginners

F5 Distributed Cloud Bot Defense Protecting AWS CloudFront Distributions

Mitigating OWASP API Security Top 10 risks using F5 NGINX App Protect