topic Re: Is the Palo Alto Prisma Cloud WAAS a host based WAF or a Runtime Application Self Protection (RASP) solution? in Prisma Cloud Discussions

Is the Palo Alto Prisma Cloud WAAS a host based WAF or a Runtime Application Self Protection (RASP) solution?

nikoolayy1 — Wed, 01 Jun 2022 15:41:24 GMT

Hello,

I was curious if is the Palo Alto Prisma Cloud WAAS just a host based WAF or a Runtime Application Self Protection (RASP) solution? My idea is that RASP is getting popular as way to block 0 day server web attacks even without signatures using behavour patterns but I do not know if the Palo Alto WAAS is a WAF, RASP or the two at the same time.

If it is just a WAF maybe if it can be integrated with Cortex XDR then it can monitor also behaviour if such intergation is possible?

Re: Is the Palo Alto Prisma Cloud WAAS a host based WAF or a Runtime Application Self Protection (RASP) solution?

nikoolayy1 — Sat, 21 May 2022 07:27:34 GMT

After talking with some people that work with XDR, there is a new XDR agent for clouds that is installed separately than the Prisma Cloud Defender and WaaS on the hosts (virtual machines, containers, kubernetes). The WaaS is a full featured WAF and the XDR agent is adding extra protections but not a RASP but I still can't decide if RASP is better than a WAF, so this is under review if RASP is needed.