使用 WASM 和 OWASP Coraza 实现的 Istio Web 应用防火墙 | Istio Web Application Firewall with WASM & OWASP Coraza - Zufar Dhiyaulhaq, GoTo Financial Web应用防火墙（WAF）是一项重要功能，用于保护Web应用免受各种类型的攻击。然而，在当前公司正在努力实现成本优化和负责任增长的情况下，由于成本限制，一些公司无法实施WAF。本次演讲介绍了Coraza，这是一个开源的替代企业WAF解决方案。我们将探讨Coraza如何与现有的Kubernetes和Istio服务网格无缝集成，如何安全地推出Coraza，处理更大量请求的可扩展性和性能方面，以及Coraza作为ModSecurity的事实替代品。 A Web Application Firewall (WAF) is an essential function that protects web applications from various types of attacks. However, in the current situation where companies are striving for cost optimization and responsible growth, some companies are unable to implement WAF due to cost constraints. This talk introduces Coraza, an open-source alternative to enterprise WAF solutions. We will explore how Coraza can seamlessly integrate with the existing Kubernetes & Istio service mesh, how to rollout Coraza safely, scalability and performance aspect to handle a larger volume of requests, and how Coraza serves as the de facto replacement for ModSecurity.