Web Application Firewall Certification Criteria

The Web Application Firewall Certification criteria were developed to help security managers secure vital application services from exploitation or attack.

In order to attain ICSA Labs Certified status, web application firewall products must pass a rigorous set of functional, performance and platform security requirements. Candidate web application firewall products must completely satisfy the entire set of baseline requirements.

If you would like to provide feedback to the criteria below, please send an email to criteria.input@icsalabs.com and someone will be in contact with you to discuss.

Attachment	Size
WAF Criteria, version 2.1 (Corrected)	127.07 KB
WAF Criteria, version 2.1	95.29 KB
WAF Criteria, version 2.0.1 (replaced by version 2.1 on March 17, 2010)	71.62 KB

ICSA Labs Certified Products

Certified Product Vendors

Browse By Technology: Search By Keyword:

Browse all Product Certifications

recent blog posts

Heartbleed Potentially Effects All Security Products, Not Just Websites

Infosecurity Professional - Interview with George Japak

June 20, 2013

George Japak, managing director of ICSA Labs, discusses testing, certification and security challenges in a Q&A interview with Infosecurity Professional's Joyce Chutchian.

The Flame Reality & Swiss Cheese Security

June 22, 2012

The worst hack is the one you don’t know about

When Ages and Revolutions Converge

January 4, 2012

One thing that’s clear is that viruses evolve in distinct ages and follow patterns. They come into existence in response to some new technology then spread and cause mischief for some years until an extinction-level event occurs and wipes them out briefly. That is, until a new technology breathes life into them again...

View Latest News

Web Application Firewalls