xml signatures

Question

I am trying to create a simple policy for web services/xml which would scan the incoming traffic against generic and xml related violations (without format or schema checks).&nbsp;
After creating + assigning a Rapid Deployment Policy and assigning Generic + XML signatures to it will ASM check for the XML related violations? (when the XML-policy/web-services part is not configured)&nbsp;
Do I understand correctly that everything going towards application will be wildcard matched against selected signature sets (including the XML stuff which should require manual policy configuration) or do the XML signatures only apply after the manual XML policy configuration?&nbsp;

nathe · Answer

ErkkiS,&nbsp;
The way you have created the policy, it will only be a negative security policy, i.e. it will check for signature violations. What you won't get is any protection against XML RFC/Standards e.g. the format of the request. You would be better served by creating a policy based on the Web Services wizard and add your XSD/WSDL file to ensure proper XML validation checking.&nbsp;
Hope this helps,&nbsp;
N&nbsp;

Forum Discussion

xml signatures

1 Reply

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

Related Content

Support of WAF Signature Staging in F5 Distributed Cloud (XC)

XML parsing by XML firewall

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

BoT Defense Profile, Signature Enforcement

Wildcard Parameter signature attack