SecureIQLab, the premier cloud validation provider, today announced its third version of Web Application Firewall (WAF 3.0) testing. This version will include the first-of-their-kind API security test cases. WAF 3.0 will evaluate the capabilities of market-leading security solutions to withstand today’s complex cyberthreat landscape.
SecureIQLab’s objective and uniquely transparent testing process provides security vendors with empirical data that validates the claims of their WAF and API solutions and identifies potential weaknesses in the systems. The test period begins on Aug. 7, and the results are anticipated to be published in November 2023. Vendors across the industry are invited to participate.
SecureIQLab’s WAF 3.0 test builds upon its last round with three key enhancements:
- Inclusion of API security test cases based on OWASP Top 10: 2023 (Open Web Application Security Project) standards
- Improved operational efficiency mapped to enterprise metrics
- Enhanced real-world false positive-based scenarios
“As products evolve and novel technologies are brought to market, it’s absolutely essential that security solutions are validated for companies to have confidence that they are receiving the security performance promised to them by vendors,” said Randy Abrams, senior security analyst at SecureIQLab.
Cloud infrastructure adoption has exploded in recent years and is only expected to increase with time. This growth, coupled with the increasingly complex nature of cyberthreats, makes the need for advanced security infrastructure more urgent than ever. Web applications comprise one of the most common attack vectors that result in security incidents and data breaches, making WAF and API security crucial to the protection of enterprises.
The WAF 3.0 testing will include vendors from industry leaders to new market entrants looking to evaluate their solution’s capabilities. Part of SecureIQLab’s unique value proposition is the transparent nature of its methodology, allowing all participants to observe and even provide feedback on how they plan to evaluate vendors’ security resiliency, operational efficiency and return on security investment.
“Cloud WAF and API security are critical technologies for protecting business assets in today’s open environments,” said David Ellis, SecureIQLab’s vice president of research and corporate relations. “Our testing provides vendors with a comprehensive view of their solution’s capabilities and enterprises with the objective data they need to feel confident in the security solutions they have in play.”
In addition to their WAF 3.0 and API testing, SecureIQLab will conduct tests for Secure Service Edge (SSE) solutions imminently. Interested enterprise security vendors are invited to contact SecureIQLab at info@secureiqlab.com.
To learn more about SecureIQLab’s unique testing methodology, visit https://secureiqlab.com/publications/.
About SecureIQLab
SecureIQLab is a US-based independent, third-party cloud security solution validation and advisory provider. SecureIQLab’s cloud security methodology is tailored to what enterprises want, blending research, risk management and data modeling performed by our deep bench of security experts. SecureIQLab is a member of the Anti-Malware Testing Standards Organization (AMTSO), NetSecOPEN, and AVAR.
View source version on businesswire.com: https://www.businesswire.com/news/home/20230628673786/en/