Manual Chapter : Overview: Detecting Automatic Transactions

Applies To:

Show Versions

BIG-IP ASM

17.5.0, 17.1.2, 17.1.1, 17.1.0, 17.0.0, 16.1.5, 16.1.4, 16.1.3, 16.1.2, 16.1.1, 16.1.0, 16.0.1, 16.0.0

Overview: Detecting Automatic Transactions

You can use BIG-IP DataSafe to check for automated manipulation of data in URL parameters and AJAX requests, and to check for removal of the Transaction Data cookie. Automatic transactions detection is particularly useful on web pages where money transfers are performed, which are popular targets of malware web robots. On a page like this, automatic transactions detection can check for data manipulation in the destination account number and/or the amount of money to be transferred, and send an alert if manipulation is detected.

If BIG-IP DataSafe is included as part of your AWAF license and not a stand-alone license, when data integrity violations are detected, the violations are passed on to the Application Security Manager (ASM) for mitigation.

Detecting Automatic Transactions

Detecting Automatic Transactions on a URL or view

Configuring a URL for receiving automatic transactions data

Configuring data manipulation detection on a URL or view

Customizing Automatic Transaction default settings