SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Australia

Guides

#
cloud security
#
cybersecurity
#
endpoint protection
#
firewalls
#
ransomware

Search

Secure cloud infrastructure shield icons server racks network connections
#
Firewalls
#
DDoS
#
Hybrid Cloud

F5 named overall leader in 2025 KuppingerCole WAAP report

Mon, 1st Sep 2025
Author image
By Melvin Hipolito, Editor

F5 has been recognised as an overall leader in the 2025 KuppingerCole Leadership Compass Report for Web Application and API Protection (WAAP) solutions.

The KuppingerCole report evaluates providers in the WAAP sector, with a view to innovation, market presence, and technology leadership among a growing marketplace responding to increasingly complex security needs for applications and APIs. WAAP solutions now combine features found in traditional web application firewalls with advanced tools for discovering and safeguarding applications and APIs. These solutions provide protection against automated threats and fraud, vulnerability and anomaly detection, and offer multi-layered Distributed Denial of Service (DDoS) mitigation.

The report describes the F5 Application Delivery and Security Platform (ADSP) as a leader across several WAAP categories. Its WAAP solution, according to the report, addresses the necessity for both detection and protection capabilities as application architectures continue to evolve.

Industry assessment

Osman Celik, research analyst at KuppingerCole and author of the report, commented on F5's suitability for larger organisations:

"F5 WAAP is an excellent option for large enterprises looking for a WAAP solution. Its versatility across deployment models and integration with major platforms make it a strong candidate for enterprises with complex, multi-cloud environments."

KuppingerCole also views WAAP's role as expanding, with increased focus on providing visibility and control as well as threat detection. The report notes that the growing reliance on applications - often made up of hybrid, multi-cloud, and on-premises elements - has increased operational complexity and widened the potential for attack.

This landscape, characterised by distributed application deployments and expanding attack surfaces, informs the need for solutions capable of managing security in diverse technology environments. The report highlights F5's response through its Application Delivery and Security Platform, which provides WAAP capabilities intended to address these requirements.

WAAP features and capabilities

In addition to core API protection, the KuppingerCole report highlights several elements from F5's WAAP offering. Secure Domain Name System (DNS), client-side defence measures, web application scanning, and an artificial intelligence-assisted operations interface are all included in the F5 WAAP capabilities, according to the report.

Further, the report acknowledges F5's advanced security measures that address the Open Web Application Security Project (OWASP) Top 10 risks for APIs. These measures feature API discovery and testing functionalities using artificial intelligence and machine learning, supporting proactive and adaptive protection against current and emerging security threats.

AI and deployment models

The Leadership Compass Report identifies several particular strengths in F5's approach. These include the incorporation of agentic AI into the F5 Application Delivery and Security Platform to furnish contextual insights for threat management, and the application's comprehensive DDoS mitigation, designed to preserve application availability during attacks. F5's use of AI and machine learning algorithms also enables it to monitor user behaviour and detect malicious activity, assigning risk scores as part of its threat management operations.

Another area singled out in the report is the range of deployment models supported by F5, which include cloud environments, on-premises implementations, containers, serverless platforms, and virtual machine instances. This breadth is cited as important for organisations operating across diverse infrastructure landscapes.

Industry commentary

John Maddison, Chief Product and Corporate Marketing Officer at F5, commented on the organisation's position:

"The WAAP solutions built into the F5 ADSP stand at the forefront of safeguarding web applications in a rapidly changing cyber landscape across complex hybrid and multicloud environments. This acknowledgment reaffirms F5's position as a WAAP leader and our effectiveness in meeting customer needs and protecting any application or API."

The report notes that the security provided by modern WAAP solutions contributes to the broader enablement and security of digital business operations. As applications and APIs are central to digital services, robust protection systems are required to both secure assets and deliver reliable user experiences.

KuppingerCole's evaluation confirms F5's positioning among vendors offering WAAP solutions suitable for large, complex environments, as enterprises continue to prioritise advanced security mechanisms and flexible deployment options.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
FireMon unveils Policy Workbench for hybrid security
Brazilian banking trojan hijacks WhatsApp for spread
Australians struggle to spot AI scam images, study shows
Check Point joins Nvidia design to secure AI factories
AI sprawl to create waste as firms chase tools, not trust

Top stories

AI-driven scams & Windows 11 reshape ATM crime risk
ReliaQuest warns of BaoLoader surge & trust attacks
3DiVi urges phased rollout to cut CCTV facial misfires
One Identity adds AI threat response to Manager 10.0
Nasuni names new CTO & CFO to drive AI data growth