1. Introducing a web security ACL to block based on device fingerprints
2/3/2017 5:01:51 PM
Introducing a web security ACL to block based on device fingerprints
Web Security,Web App Security,Web App Security API
App Developer Magazine

Introducing a web security ACL to block based on device fingerprints

Friday, February 3, 2017

Richard Harris Richard Harris

Distil Networks, Inc., a bot detection and mitigation company, has announced a web application security Access Control List (ACL) platformA to block based on device fingerprints, providing a more effective way for website defenders to manage and apply whitelists and blacklists across their online applications.

"A key piece of feedback we got from our Bot Defense Council was that they were spending too much time managing ACLs in their firewall or WAF, so we set out to reimagine what a modern ACL could be," said Rami Essaid, CEO of Distil Networks. "Traditionally, ACLs have been centered around IP addresses, but Advanced Persistent Bots simply rotate through IP addresses or hide behind proxy networks. With our Universal ACL, customers can set a policy with a very specific set of information, then apply it to a specific path, domain or API. They can even put someone in a 'penalty box', which can then automatically deprecate after say 48 hours. There's no need to worry about what IPs are associated with, say North Korea. We manage all that for you. This is the easy button for controlling how you whitelist and block different types of traffic hitting your websites and APIs."

While ACL creation and updating has typically been time consuming and hard to manage, Distil's Universal ACL offers a policy-based approach for effective time management, visibility, and control. Customers can create a universal ACL policy, which they can then apply to a specific domain, URL/path, API, or across their entire Distil Networks account.

Unlike traditional ACLs that are limited to IP addresses, the ACL enables whitelisting or blacklisting based on any combination of IPs, countries, organizations, tokens, hi-def fingerprints, user agents, and referrers. Distil also shields users from the tedious task of managing IP drift. For example, instead of uploading and maintaining a list of IPs that correspond to unwanted traffic from a nefarious organization, hosting provider, or country, the ACL provider updates the corresponding IPs automatically behind the scenes.

Subscribe to App Developer Magazine

Become a subscriber of App Developer Magazine for just $5.99 a month and take advantage of all these perks.


  • - Exclusive content from leaders in the industry
  • - Q&A articles from industry leaders
  • - Tips and tricks from the most successful developers weekly
  • - Monthly issues, including all 90+ back-issues since 2012
  • - Event discounts and early-bird signups
  • - Gain insight from top achievers in the app store
  • - Learn what tools to use, what SDK's to use, and more

    Subscribe here