9.5: Implement Application Firewalls
Threats Addressed:
Group:
The next version of the control set incorporates all or part of this control into: 13.10: Perform Application Layer Filtering.
Control Statement
Place application firewalls in front of any critical servers to verify and validate the traffic going to the server. Any unauthorized traffic should be blocked and logged.
[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]