Web Application Protection (WAP) uses attacks, audits,
and parameter names (keywords) from the Protocol Analysis Module (PAM)
engine to provide overall protection against web application security
attacks.
Configuring web protection
Use the Web Protection tab on the Network
IPS appliance
to enable protection signatures that protect your web applications
from well-known web application security attacks.
Configuring shared tuning
Use the Shared Tuning tab on your Network
IPS appliance
to list tuning parameters to ignore as protection against specific
signatures: Client-Side attacks, Injection attacks, Malicious File
Execution, and Cross-Site Request Forgery.
PAM-controlled security events and response filters
The Protocol Analysis Module (PAM) controls X-Force Virtual Patch recommendations,
which means that PAM controls many security events. PAM overrides
settings that are configured for some security events in the Web Application
Protection (WAP) policy. Use response filters to override PAM settings.