Cloudflare is introducing Attack Signature Detection and Full-Transaction Detection to provide continuous, high-fidelity security insights without the manual tuning of traditional WAFs. By correlating request payloads with server responses, we can now identify successful exploits and data exfiltration while minimizing false positives.

Cloudflare's platform is a leading provider of internet security and performance solutions, offering insights into web security, content delivery, and DNS management. Through documentation, blog posts, and webinars, Cloudflare provides insights into protecting websites and applications from cyber threats and improving performance. Developers and IT professionals can learn about CDN (Content Delivery Network), DDoS mitigation, and firewall configurations to secure and accelerate web traffic.

Cloudflare

Cloudflare is introducing two new WAF capabilities to eliminate the traditional log-versus-block trade-off. Attack Signature Detection runs all detection signatures on every request continuously, attaching rich metadata before any action is taken, so security teams gain full visibility without sacrificing protection or performance. Full-Transaction Detection goes further by correlating both HTTP request and response data to confirm successful exploits, detect data exfiltration, and surface misconfigurations that request-only systems miss. Both features separate detection from mitigation, allowing teams to build precise blocking policies based on historical traffic data rather than guesswork. Attack Signature Detection is in Early Access; Full-Transaction Detection is under development.

Always-on detections: eliminating the WAF “log versus block” trade-off