MonitorLab said on Monday it has changed the official name of its WAAP (Web Application & API Protection) product from AIWAF to AIWAAP and launched a new version that upgrades functions centered on API security.

The company said AIWAAP supports enhanced visibility across APIs by automatically identifying and classifying all assets, including shadow APIs, through automatic API profiling based on real-time traffic analysis.

It is focused on blocking OWASP API Top 10 threats, including authorization bypass attacks such as BOLA (Broken Object Level Authorization), by precisely distinguishing normal and abnormal calls through validation of defined API schemas and actual call data, along with JWT validation and payload analysis.

It precisely detects attempts to extract abnormal data. Users can check detected threats through an API-only dashboard and detailed reports.

MonitorLab plans to strengthen API security capabilities through AIWAAP while also upgrading DDoS and bot mitigation functions as a WAAP product to expand the scope of response to various attack scenarios.

MonitorLab Chief Executive Kwang-hoo Lee (이광후) said, "The center of security is being reorganized around APIs." He added, "Through the official launch of AIWAAP, we strengthened an operational system based on visibility and verification across all areas of APIs, and we will solidify our position in the web firewall market and strengthen integrated security competitiveness."