F5 launches AI-powered app and API security capabilities for its ANZ clients

Jason Baden, Regional Vice President, Australia and New Zealand for F5
Jason Baden, Regional Vice President, Australia and New Zealand for F5

F5 announced security capabilities to give customers across ANZ comprehensive protection and control in managing apps and APIs across data centre, cloud, hybrid, and edge locations. Specifically, new machine learning enhancements provide F5’s cloud security portfolio with advanced API endpoint discovery, anomaly detection, telemetry, and behavioural analysis.

Why are F5’s new capabilities a timely solution?

As more transactions and customer engagements occur through digital channels such as web and mobile apps, organisations are seeking better solutions to provide secure experiences for their end users and maintain their trust. With APIs as the building blocks of modern web and mobile experiences, protecting these assets is the cornerstone of securing digital services.

F5 clients can now strengthen their security posture with a continuously improving analysis engine and unified policy enforcement. These capabilities enable secure app-to-app communications through monitored APIs, thus reducing the time security teams spend correcting false positives and accelerating time-to-deployment for new services.

The enhancements, as well as new managed service offerings for enterprises and service providers, further accelerate the momentum of F5 Distributed Cloud Services, introduced in 2022 and bolstered by the recent launch of multi-cloud networking solutions.

Modern firms continue to show a clear preference for hybrid solutions. According to F5’s 2023 State of Application Strategy (SOAS) Report, 85% of respondents have deployed apps and APIs in distributed environments spanning multiple public clouds, as well as on-premises and edge locations. Over 20% are deploying apps and APIs in six different environments.

Also, security teams struggle to provide consistent protection and visibility for a rapidly expanding attack surface area. This is because many contemporary web application and API protection (WAAP) solutions rely on point products or offerings based on and provided by content delivery network (CDN) vendor tech that cannot scale beyond cloud-based apps and lack the ability to be deployed on premises, in public clouds, or in other edge locations.

“Organisations across A/NZ continue to face the challenges of an ever-evolving landscape while working to effectively and efficiently deliver distributed modern digital services. In order to compete in highly competitive markets, organisations need a consistent and streamlined approach to ensure scalability, visibility, and security across all environments without adding complexity,” said Jason Baden, Regional Vice President, Australia and New Zealand for F5.

What do F5’s new capabilities bring to the table?

F5 offers a full suite of capabilities to provide robust protection for apps and APIs across on-premises, cloud, and edge locations. Moreover, F5’s end-to-end approach to security means that threat data can be gathered and analysed across all deployed locations, including ongoing and emerging attack campaigns detected by the F5 Threat Campaigns service.

As part of a larger hardware, software, SaaS, and managed services portfolio that also offers best-in-class application delivery capabilities, F5 security solutions protect a diverse mix of distributed apps and APIs in any environment without adding further operational complexity.

Enhanced API Security Provides Greater Protection for Modern Apps

F5 offerings are firmly in step with firms’ desire to deploy security capabilities in the public cloud and as-a-service. Unlike API-only point product security providers, F5 delivers API auto-discovery, policy enforcement, and anomaly detection as part of a unified WAAP service, simplifying operations and enforcement through a single console for app and API protection.

Since static signature-based controls are insufficient for protecting API endpoints due to their dynamic, evolving nature, F5 Distributed Cloud API Security utilises optimised machine learning for automatic API discovery, threat detection, and schema enforcement.

By observing normal behaviour +patterns across all endpoints, F5’s advanced analysis engine helps users detect anomalies and refine API schemas to improve their overall security posture. Additionally, F5 supports token identification to detect anomalous behaviour accessing JSON web tokens (JWT) and prevent unauthorised usage.

AI as an Essential Element of App Security

According to F5’s SOAS Report, nearly two-thirds of organisations are prioritising the use of AI/machine learning, with security as a top use case. Chief Information Security Officers (CISOs) view such capabilities as a means to reduce the time between detection and response without compromising efficacy or requiring additional security staff.

In addition to AI-based enhancements for Distributed Cloud API Security, F5 is introducing AI-driven web application firewall (WAF) capabilities, including malicious user detection and mitigation capabilities that create a per-user threat score based on behavioural analysis that determines intent. This enables security operations to choose between alerting or automatic blocking to mitigate an attack that would otherwise go undetected by static signatures.

With F5, all traffic is monitored and proactive defences are applied based on malicious user behaviour that can be correlated across Distributed Cloud WAAP deployments. It offers false positive suppression, making it easier to block bad traffic without blocking legitimate users, and streamlines operations by reducing the time necessary to enable specific app protections.

Simplifying App Security through Managed Service Offerings

Given organisations’ growing challenges in deploying consistent security across increasingly distributed infrastructures—as well as finding available personnel with the required security skillsets—F5 is expanding its managed service offerings:

  • Distributed Cloud WAAP Managed Services enable F5 customers to access the experience and expertise of the F5 SOC to manage WAF, bot defence, and DDoS protection. Through a shared console, customers have the ability to seamlessly move between a self-service or managed service model as the needs of their apps and approach to app security change.
  • Distributed Cloud Managed Service Portal enables F5 service provider partners to build and tailor their own managed service offerings based on the leading security capabilities of F5 Distributed Cloud WAAP. This approach lets partners manage Distributed Cloud WAAP on behalf of their customers without sacrificing visibility, resulting in new revenue sources and value-added services while extending the overall reach of the solution.

What do the capabilities mean for businesses?

“Just as every business has different risk factors, app security will never be one size fits all,” said Chris Steffen, Managing Research Director at Enterprise Management Associates.

“Leading vendors recognise that a better approach is to provide integrated capabilities that can take advantage of unified security policies—and enhanced machine learning—across data centre, cloud, hybrid, and edge deployments. F5 solutions give clients the flexibility to scale apps and infrastructure in concert while offering leading security in any deployment context.”