Security Rule Generation: 5x Faster
Each time you switch the operation mode (for example: from monitoring to blocking mode), create a custom rule, or mark the request as a false positive, the Wallarm Cloud generates a new application profile so that every Wallarm Node can use up-to-date security rules. This process is now at least 5x faster. In many cases, it is 10x faster.
How it works?
The application profile provides known information about customers’ APIs, application endpoints, and relevant security rules that should be applied to traffic processing. The rules are application-specific, so the app-profile is individually created for every customer and compiled into a special file called LOM, which is later used by Wallarm Nodes.
The compilation of the rules tree structure is complex algorithmically and requires a lot of resources and time. One of the recent tasks of our node development team was to radically optimize this operation. There is a lot of work in progress. However, one of the most efficient measures was a well known caching technique. This increased the assembly speed of LOM by at least 5-10 times. We are working on more optimizations and plan for their release to be in the near future.