Cloud web application and API protection platforms provide protection from a broad range of sophisticated runtime attacks. Security and risk management leaders can use this Market Guide to analyze the cloud WAAP market and select solutions that meet their organization’s needs.

Key Findings

• API protection is a primary interest and driver in the process of selecting cloud web application and API protection (WAAP) solutions.
• Gartner is observing an increased interest in client-side protection capabilities with the new PCI DSS 4.0.1 mandates.
• Bot attacks maturity and success rates continue to outpace the capabilities of cloud WAAP bot mitigation products, increasing the demand for more advanced capabilities from cloud WAAP vendors.
• Regulatory mandates are driving an increase in demand for local points of presence (PoPs) from organizations based out of the Middle East and other regions with data sovereignty concerns.