Dell SMA 200 Administration Manual page 71

The second column displays the status of the PCI requirement under current Web Application Firewall settings.
There are four possible values for the status, distinguished by color.
• Satisfied (Green)
• Partially Satisfied (Orange)
• Unsatisfied (Red)
• Unable to determine (Black)
The third column provides comments and details explaining the status rating. If the status is Satisfied, no
comments are provided.
How Does Cookie Tampering Protection Work?
SMA/SRA appliances protect important server-side cookies from tampering.
There are two kinds of cookies:
• Server-Side Cookies – These cookies are generated by backend Web servers. They are important and
have to be protected. They have optional attributes like Path, Domain, Secure, and HttpOnly.
• Client-Side Cookies – These cookies are created by client side scripts in user browsers. They are not
safe, and can be easily tampered with.
This feature is found on the Web Application Firewall > Settings page.
This page contains the following options:
Portals – A list of all application offloading portals. Each portal has its own settings. The item Global is the
default setting for all portals.
Tamper Protection Mode – Three modes are available:
• Prevent – Strip all the tampered cookies and log them.
• Detect only – Log the tampered cookies only.
• Inherit Global – Use the global setting for this portal.
Encrypt Server Cookies – Choose to encrypt name and value separately. This affects client-side script behavior
because it makes cookie names or values unreadable. Only server-side cookies are encrypted by these options.
Cookie Attributes – The attributes HttpOnly and Secure are appended to server-side cookies if they are
enabled.
The attribute HttpOnly prevents the client-side scripts from accessing the cookies that is important in
mitigating attacks such as Cross Site Scripting and session hijacking. The attribute Secure ensures that the
Dell SonicWALL Secure Mobile Access 8.5
Administration Guide
71