F5 achieves 97.09% total security protection score from SecureIQLab for WAAP and AI Guardrails solution
Fill out the form to download the full report.
In today’s fast-changing technological landscape, applications and how we secure them are undergoing a major shift. Artificial intelligence (AI) is at the forefront of innovation, revolutionizing how apps are designed, deployed, and interacted with. As apps become smarter and more complex, so too do the mechanisms malicious actors use to exploit their vulnerabilities. The threat landscape is now more sophisticated, more targeted, and increasingly difficult to predict. And it is now more pressing to have approaches like "AI guardrails"—technical and operational guidelines that ensure AI systems perform safely and responsibly.
Web Application and API Protection (WAAP) solutions are designed to tackle these challenges head-on. WAAP emphasizes more modern Web App Firewall (WAF) technology, robust API security, bot protection and AI governance. Understanding the efficacy, efficiency, and real-world implementation of specific WAAP solutions is critical, and third-party cybersecurity validation firms like SecureIQLab provide such insights.
F5 delivers strong protection against Traditional and Emerging App Attacks
In a recent security briefing, SecureIQLab evaluated F5’s Application Delivery and Security Platform, studying the platform’s WAAP capabilities when deployed alongside F5 AI Guardrails. The results were impressive, earning a total security score of 97.09%.
SecureIQLab determined F5 provides strong protection against traditional and emerging application attacks, automated bot activity, and application-layer denial-of-service techniques. When AI Guardrails was integrated into the security architecture, protection against AI-specific threats increased dramatically, improving LLM security effectiveness from 19% to 97%.
F5 ADSP WAAP and F5 AI Guardrails test results
SecureIQLab testing methodology includes three main attack classes that represent increasing levels of sophistication:
Baseline application security
OWASP Web Application Top 10 and OWASP API Security Top 10
Advanced application attacks
Automated bot attacks and Layer-7 DoS/DDoS techniques
AI application attacks
Prompt injection and AI Improper Output Handling attacks
Baseline application security
F5 WAAP earned an average OWASP WAF score of 92.1% and an average OWASP API score of 93% in addition to a 93.4% false positive avoidance with WAF.
F5 received a perfect score, protecting with 100% accuracy, for the following OWASP WAF and OWASP API Top 10:
- A 02:2025 Security Misconfiguration
- A 03:2025 Software Supply Chain Failures
- A 05:2025 Injection
- A 06:2025 Insecure Design
- A 07:2025 Authentication Failures
- A 10:2025 Mishandling of Exceptional Conditions
- API1:2023 Broken Object Level Authorization
- API2:2023 Broken Authentication
- API3:2023 Broken Object Property Level Authorization
- API6:2023 Unrestricted Access to Sensitive Business Flows
- API7:2023 Server-Side Request Forgery
- API9:2023 Improper Inventory Management
- API10:2023 Unsecure Consumption of APIs
Advanced application attack protection
F5 WAAP earned a perfect score of 100% for Bot Attack Mitigation and Layer 7 Dos Protection.
AI application security
When WAAP controls are combined with F5 AI Guardrails, SecureIQLabs found:
We invite you to explore all details of this report by completing the form above. Our sales specialist are also standing by to help answer any questions.
Contact sales