I_R_101_110
Jul 07, 2018Cirrus
HTTP Security Profiles and ASM Overlap
Good afternoon all,
I'm just wondering about how http security profiles fit into the BIG-IP offering as a whole in relation to the ASM security profile. The entire http_security profile is an overlap of the capabilities of ASM but it is attachable at the vs lvl.
My initial though is that it fulfills two requirements:
- To protect non-ASM deployments with standard http compliance if you have AFM licensed.
- To offer a defense in depth tiered architecture in which AFM/LTM is scrubbing traffic before being forwarded to an LTM/ASM box.
- Defense in depth.
Am I missing something here or am I accurate in my assumptions?