CRSF Vulnerability

Question

Not sure where the ASM Module Forum is -- but wondering if anyone has tried to prevent Cross Site Request Forgery through iRules or know if F5 is developing a solution for ASM. &nbsp;
&nbsp;There is what looks like a good proxy based solution published at:&nbsp;
&nbsp;http://www.seclab.tuwien.ac.at/papers/noforge.pdf&nbsp;
&nbsp;More on CRSF or XRSF 
&nbsp;http://en.wikipedia.org/wiki/Cross-site_request_forgery&nbsp;&nbsp;
&nbsp;Pat

hoolio · Answer

I'll add that ASM is designed to protect against XSRF, XSS (and many other) attacks using both positive and negative validation of requests.  There are character sets which define valid characters in parameter names, parameter values, headers and the object.  There are a set of default regular expressions against these same components which validate the request does not contain malicious patterns.  Custom regexes can be added as well.  ASM also enforces length restrictions which limit how big the total request, header, parameter and parameter values can be. &nbsp;
&nbsp;iRules can help provide good specific security.  ASM provides a more comprehensive package of validations and protection.  I would imagine you could talk with an F5 salesperson to get more specifics on ASM.&nbsp;
&nbsp;Aaron&nbsp;&nbsp;

Forum Discussion

CRSF Vulnerability

Recent Discussions

Flip-flop load balancing

ASM Export JSON - size Limit ?

Can i apply ddos profile on virtual server using port range

I used the wrong email account when take Application Delivery Exam (101)

F5 iControl REST API - viewBy Parameter Issue in Analytics Report

Related Content

Mitigating Apache Camel Vulnerability CVE-2025–27636 with F5 Products

Phishing, Malware and Spyware Campaign, BRUTED Tool & CISA’s List Of Exploited Vulnerabilities

Windows Critical RCE Vulnerability, Malicious Solana-py, and EDRKillShifter

Coordinated Vulnerability Disclosure: A Balanced Approach

OWASP Automated Threats - OAT-014 Vulnerability Scanning

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS