It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Campus Barracuda Campus
Barracuda WAF-as-a-Service
Overview Documentation Training Certification Materials

Protecting Against Identity Theft with Barracuda WAF-as-a-Service

  • Last updated on

Identity theft, where personal information is stolen for fraudulent purposes, is a major security concern. Barracuda WAF-as-a-Service helps prevent this by safeguarding sensitive data within application responses.

How it Works

The Barracuda WAF-as-a-Service identifies patterns commonly associated with identity theft data types like credit card numbers, social security numbers, and directory listings. If a pattern match is detected in the response traffic, the WAF-as-a-Service takes action based on your configuration:

  • Blocking: The response is blocked entirely, preventing sensitive data exposure.
  • Cloaking: The data is masked or replaced with harmless characters, rendering it unusable to unauthorized parties.

Additional Protection Against Common Attacks

Barracuda WAF-as-a-Service goes beyond identity theft protection. It can also identify patterns associated with other security risks, such as:

  • Cloud Misconfiguration: Patterns that expose sensitive information stored in cloud platforms like AWS and Microsoft Azure.
  • Web Server Errors: Patterns that reveal internal server errors, potentially aiding attackers in exploiting vulnerabilities.
  • Database Errors: Patterns that indicate database errors, potentially providing attackers with insights into your database structure.

By combining identity theft protection with these additional features, Barracuda WAF-as-a-Service offers comprehensive application security.

Customizable Protection

You can configure exceptions for specific patterns to avoid blocking legitimate responses. The provided table lists predefined patterns for various identity theft data types:

Identity Theft GroupPattern Name(s)
credit-cards
  • discover
  • amex-with-dashes
  • visa    
  • visa-with-dashes
  • visa-with-spaces
  • mastercard-with-dashes
  • discover-with-dashes
  • amex-with-spaces
  • jcb-with-dashes
  • mastercard-with-spaces
  • jcb-with-spaces
  • jcb
  • amex
  • diners-club-with-dashes
  • diners-club
  • discover-with-spaces
  • diners-club-with-spaces
  • mastercard
social-security-numbers
  • krrn-plain
  • ssn-plain
  • india-pan
  • cssn-with-dashes
  • cssn-plain
  • ssn-with-spaces
  • ssn-with-dashes
  • krrn-with-dashes
directory-indexing
  • pre-link-parent-dir
  • title-index-of
aws-meta-checks
  • aws-asp-errors
  • aws-access-key-value
  • aws-access-entities
microsoft-errors
  • microsoft-asp-errors
  • microsoft-vb-error-4
  • microsoft-vb-error-2
  • microsoft-custom-errors
  • microsoft-generic-error-2
  • microsoft-vb-error-3
  • microsoft-vb-error-5
  • microsoft-iis-error
  • microsoft-generic-error-1
  • microsoft-generic-error-4
  • microsoft-page-error
  • microsoft-dotnet-error
  • microsoft-vb-error-1
oracle-errors
  • oracle-error
php-errors
  • php-open-err
  • php-general-2
  • php-general-3
  • php-script-err
  • php-var-err
  • php-general-4
  • php-general-1
postgres-errors
  • postgres-gen-2
  • postgres-gen-1
  • postgres-query
  • postgres-sql
mysql-errors
  • sql-err-reponses-1
  • sql-err-reponses-3
  • sql-intsvr-err
  • sql-except-err
  • sql-err-reponses-2
  • sql-invquery-err
  • sql-err-reponses-4
  • sql-connect-err
  • sql-jmp-err
  • sql-failed-err