COOKIE SECURITY
Set Cookie Security Policy
[POLICY] > (Select Domain Group) > [Policy Settings] > DOMAIN POLICY > [COOKIE SECURITY] > [ADD POLICY]
Configures security pattern inspection for Cookie values used in the domain. This helps detect and block cookie tampering or malicious code injection attempts. Click the [ADD POLICY] button to set the pattern and action to apply. An audit log is created upon completion.
- Manage Security Patterns: Managed in the
[TEMPLATE] > [SECURITY PATTERN]menu. For details, refer to the Security Pattern page.
| Item | Description |
|---|---|
| ID | The unique identifier ID of the security pattern (or pattern group). |
| PATTERN | Select the security pattern to apply for cookie inspection. You can select an entire pattern group from the tree structure list or select individual patterns under it. |
| RISK | Displays the risk level (High/Medium/Low) of the security pattern. • System Pattern: The default risk level provided by DeepFinder is applied. • User Pattern: The risk level set by the administrator when creating the pattern is displayed. |
| ACTION | Select the action to perform upon policy violation (pattern match). • NONE: Does not apply the policy. • ALLOW: Allows the connection, skips lower-priority rule checks within the current policy, and proceeds to the next security policy stage. • DENY: Immediately blocks the connection. • REDIRECT: Blocks the connection and redirects to the specified block page. • DETECT: Records a detection log only and continues to check the next policy without blocking. |
| LOG TYPE | Selects the detail level of the log to record upon detection. (NONE / LOW / FULL) |
Set Cookie Security Policy Priority
[POLICY] > (Select Domain Group) > [Policy Settings] > DOMAIN POLICY > [COOKIE SECURITY] > [ADD POLICY] > (Adjust Priority)
Changes the inspection order between registered cookie security policies. The lower the priority number (closer to 1), the earlier it is inspected. After adjusting the order, click [SAVE] to apply the settings.
