{"id":8097,"date":"2018-04-09T14:17:30","date_gmt":"2018-04-09T14:17:30","guid":{"rendered":"https:\/\/opencloudday.ch\/?page_id=2109"},"modified":"2018-04-09T14:17:30","modified_gmt":"2018-04-09T14:17:30","slug":"web-application-firewall-friend-of-your-devops-chain","status":"publish","type":"page","link":"https:\/\/www.ch-open.ch\/en\/open-cloud-day\/ocd-program\/web-application-firewall-friend-of-your-devops-chain\/","title":{"rendered":"Web Application Firewall – Friend of your DevOps Chain?"},"content":{"rendered":"

\n\t\tWEB APPLICATION FIREWALL – FRIEND OF YOUR DEVOPS CHAIN?
\n\t<\/h1>\n

A Web Application Firewall may cause fear that doesn’t fit into the DevOps methodology. But what if a WAF is involved in the DevOps process very early and not just at its end?<\/p>\n

The problem is that when a WAF is added to production, the impact on the application is tested too late, because application developers get feedback extremely late and the WAF could probably break the application. The referent will show a way how to integrate a WAF and its testing into the deployment pipeline with fast feedback loops.<\/p>\n

The referent Franziska B\u00fchler works as a Systems Engineer for Swiss Post, where she builds and enhances the reverse proxy platform in a DevOps manner. Her main areas of responsibility are web server security and everything related to the access layer.
\nIn her spare time Franziska B\u00fchler likes to read technical books about security, DevOps or HTTP. If she is not reading, she disassembles highly optimized regular expressions as described in her blogpost<\/a>. Also Franziska helps as a developer and committer to enhance the OWASP ModSecurity Core Rule Set. The Core Rule Set is a rule set for the ModSecurity WAF. See https:\/\/coreruleset.org<\/a><\/p>\n

\t\t\t\t\"Franziska<\/p>\n","protected":false},"excerpt":{"rendered":"

WEB APPLICATION FIREWALL – FRIEND OF YOUR DEVOPS CHAIN? A Web Application Firewall may cause fear that doesn’t fit into the DevOps methodology. But what if a WAF is involved in the DevOps process very early and not just at its end? The problem is that when a WAF is added to production, the impact…<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":8086,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"class_list":["post-8097","page","type-page","status-publish","hentry"],"acf":[],"yoast_head":"\nWeb Application Firewall - Friend of your DevOps Chain? < CH Open<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.ch-open.ch\/en\/open-cloud-day\/ocd-program\/web-application-firewall-friend-of-your-devops-chain\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Web Application Firewall - Friend of your DevOps Chain?\" \/>\n<meta property=\"og:description\" content=\"WEB APPLICATION FIREWALL – FRIEND OF YOUR DEVOPS CHAIN? A Web Application Firewall may cause fear that doesn’t fit into the DevOps methodology. But what if a WAF is involved in the DevOps process very early and not just at its end? The problem is that when a WAF is added to production, the impact…\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.ch-open.ch\/en\/open-cloud-day\/ocd-program\/web-application-firewall-friend-of-your-devops-chain\/\" \/>\n<meta property=\"og:site_name\" content=\"CH Open\" \/>\n<meta property=\"og:image\" content=\"https:\/\/opencloudday.ch\/wp-content\/uploads\/sites\/6\/2018\/04\/Franziska-B\u00fchler-150x150.jpg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@ch_open\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.ch-open.ch\\\/en\\\/open-cloud-day\\\/ocd-program\\\/web-application-firewall-friend-of-your-devops-chain\\\/\",\"url\":\"https:\\\/\\\/www.ch-open.ch\\\/en\\\/open-cloud-day\\\/ocd-program\\\/web-application-firewall-friend-of-your-devops-chain\\\/\",\"name\":\"Web Application Firewall - Friend of your DevOps Chain? < CH Open\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.ch-open.ch\\\/#website\"},\"datePublished\":\"2018-04-09T14:17:30+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.ch-open.ch\\\/en\\\/open-cloud-day\\\/ocd-program\\\/web-application-firewall-friend-of-your-devops-chain\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.ch-open.ch\\\/en\\\/open-cloud-day\\\/ocd-program\\\/web-application-firewall-friend-of-your-devops-chain\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.ch-open.ch\\\/en\\\/open-cloud-day\\\/ocd-program\\\/web-application-firewall-friend-of-your-devops-chain\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.ch-open.ch\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Open Cloud Day\",\"item\":\"https:\\\/\\\/www.ch-open.ch\\\/en\\\/open-cloud-day\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"OCD Program\",\"item\":\"https:\\\/\\\/www.ch-open.ch\\\/en\\\/open-cloud-day\\\/ocd-program\\\/\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Web Application Firewall – Friend of your DevOps Chain?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.ch-open.ch\\\/#website\",\"url\":\"https:\\\/\\\/www.ch-open.ch\\\/\",\"name\":\"CH Open\",\"description\":\"Verein CH Open\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.ch-open.ch\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.ch-open.ch\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.ch-open.ch\\\/#organization\",\"name\":\"CH Open\",\"url\":\"https:\\\/\\\/www.ch-open.ch\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.ch-open.ch\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.ch-open.ch\\\/wp-content\\\/uploads\\\/2017\\\/03\\\/CHOpen_Logo_700.png\",\"contentUrl\":\"https:\\\/\\\/www.ch-open.ch\\\/wp-content\\\/uploads\\\/2017\\\/03\\\/CHOpen_Logo_700.png\",\"width\":700,\"height\":256,\"caption\":\"CH Open\"},\"image\":{\"@id\":\"https:\\\/\\\/www.ch-open.ch\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/ch_open\",\"https:\\\/\\\/www.youtube.com\\\/user\\\/openexpo\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Web Application Firewall - Friend of your DevOps Chain? < CH Open","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.ch-open.ch\/en\/open-cloud-day\/ocd-program\/web-application-firewall-friend-of-your-devops-chain\/","og_locale":"en_US","og_type":"article","og_title":"Web Application Firewall - Friend of your DevOps Chain?","og_description":"WEB APPLICATION FIREWALL – FRIEND OF YOUR DEVOPS CHAIN? A Web Application Firewall may cause fear that doesn’t fit into the DevOps methodology. But what if a WAF is involved in the DevOps process very early and not just at its end? The problem is that when a WAF is added to production, the impact…","og_url":"https:\/\/www.ch-open.ch\/en\/open-cloud-day\/ocd-program\/web-application-firewall-friend-of-your-devops-chain\/","og_site_name":"CH Open","og_image":[{"url":"https:\/\/opencloudday.ch\/wp-content\/uploads\/sites\/6\/2018\/04\/Franziska-B\u00fchler-150x150.jpg","type":"","width":"","height":""}],"twitter_card":"summary_large_image","twitter_site":"@ch_open","twitter_misc":{"Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.ch-open.ch\/en\/open-cloud-day\/ocd-program\/web-application-firewall-friend-of-your-devops-chain\/","url":"https:\/\/www.ch-open.ch\/en\/open-cloud-day\/ocd-program\/web-application-firewall-friend-of-your-devops-chain\/","name":"Web Application Firewall - Friend of your DevOps Chain? < CH Open","isPartOf":{"@id":"https:\/\/www.ch-open.ch\/#website"},"datePublished":"2018-04-09T14:17:30+00:00","breadcrumb":{"@id":"https:\/\/www.ch-open.ch\/en\/open-cloud-day\/ocd-program\/web-application-firewall-friend-of-your-devops-chain\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.ch-open.ch\/en\/open-cloud-day\/ocd-program\/web-application-firewall-friend-of-your-devops-chain\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.ch-open.ch\/en\/open-cloud-day\/ocd-program\/web-application-firewall-friend-of-your-devops-chain\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.ch-open.ch\/en\/"},{"@type":"ListItem","position":2,"name":"Open Cloud Day","item":"https:\/\/www.ch-open.ch\/en\/open-cloud-day\/"},{"@type":"ListItem","position":3,"name":"OCD Program","item":"https:\/\/www.ch-open.ch\/en\/open-cloud-day\/ocd-program\/"},{"@type":"ListItem","position":4,"name":"Web Application Firewall – Friend of your DevOps Chain?"}]},{"@type":"WebSite","@id":"https:\/\/www.ch-open.ch\/#website","url":"https:\/\/www.ch-open.ch\/","name":"CH Open","description":"Verein CH Open","publisher":{"@id":"https:\/\/www.ch-open.ch\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.ch-open.ch\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.ch-open.ch\/#organization","name":"CH Open","url":"https:\/\/www.ch-open.ch\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.ch-open.ch\/#\/schema\/logo\/image\/","url":"https:\/\/www.ch-open.ch\/wp-content\/uploads\/2017\/03\/CHOpen_Logo_700.png","contentUrl":"https:\/\/www.ch-open.ch\/wp-content\/uploads\/2017\/03\/CHOpen_Logo_700.png","width":700,"height":256,"caption":"CH Open"},"image":{"@id":"https:\/\/www.ch-open.ch\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/ch_open","https:\/\/www.youtube.com\/user\/openexpo"]}]}},"_links":{"self":[{"href":"https:\/\/www.ch-open.ch\/en\/wp-json\/wp\/v2\/pages\/8097","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ch-open.ch\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.ch-open.ch\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.ch-open.ch\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ch-open.ch\/en\/wp-json\/wp\/v2\/comments?post=8097"}],"version-history":[{"count":0,"href":"https:\/\/www.ch-open.ch\/en\/wp-json\/wp\/v2\/pages\/8097\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/www.ch-open.ch\/en\/wp-json\/wp\/v2\/pages\/8086"}],"wp:attachment":[{"href":"https:\/\/www.ch-open.ch\/en\/wp-json\/wp\/v2\/media?parent=8097"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}