A security analyst is evaluating a web application firewall (WAF). Which TWO features are most critical for preventing common web attacks?
Detects known attack signatures like SQL injection patterns.
Why this answer
Signature-based detection catches known attack patterns; behavioral analysis identifies anomalies and unknown attacks. SSL inspection is for decryption, not prevention. Rate limiting is for availability.
Virtual patching is a specific technique that is less critical than core detection engines.