A large retail website reports repeated script-based attacks on its login page. Administrators have tested a solution that analyzes incoming traffic for malicious patterns and blocks suspicious connections at the application layer, all while ensuring legitimate shoppers can still sign in. What approach accomplishes this goal in front of the web servers?
An encryption gateway that manages secure key negotiation for inbound connections
A specialized layer of protection that analyzes and filters traffic against known attack patterns
A code review strategy that requires each new feature pass a static analysis check
A router-based filter that limits connections based on network address ranges
A specialized layer of protection at the application layer is the correct fit because it inspects HTTP traffic against known attack patterns, blocking script-based threats before they reach the underlying servers. A router-based filter often lacks deep packet inspection. A code review process can help reduce vulnerabilities but does not actively block malicious traffic in real-time. An encryption gateway handles key exchanges and confidentiality, not application-layer filtering of harmful code.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a specialized layer of protection in web security?
Open an interactive chat with Bash
How does a Web Application Firewall (WAF) detect malicious patterns?
Open an interactive chat with Bash
Why is deep packet inspection important in blocking script-based attacks?