Release Notes: R&S®Web Application Firewall – 6.5.2

7 March 2019

Rohde & Schwarz Cybersecurity is proud to announce the release of R&S®Web Application Firewall version 6.5.2 Available in two editions, Business and Enterprise, it will meet your development needs, your technical environment and your security policy. By taking into account deployment mode, type and number of applications, environmental complexity, and regulatory and industry standards, you can choose the most appropriate edition to provide the most appropriate security measures for your organization. A state-of-the-art platform for securing Web applications, Web services and APIs, R&S®Web Application Firewall is the essential security solution for all types of organizations, public authorities and large companies.

Major enhancements


R&S®Web Application Firewall – two editions to meet different needs

Since the release of 6.5.2, R&S®Web Application Firewall is available in two different versions or ‘Editions’: Business and Enterprise to address different use cases with the right capabilities.

Business Edition is the entry-level solution, run on less powerful appliances/virtual machines with limited core security functionalities (Generic patterns-ICX, Heuristics via Scoring List and API Security based on JSON / XML).

Enterprise Edition is essentially ‘Business Edition’ with extra features that advanced and enterprise users are likely to want to take advantage of: complementary security engines, available with Advanced Security, Extended API Security to protect API-based custom applications & Machine-to-Machine communications. Comprehensive Analytics & Reporting as well as Web Access Manager optional modules are only available with Enterprise Edition. IP Reputation is an optional service available with both Editions.

It is not possible to deploy different editions in the same environment. For more information about, see the Licenses page.

Minor enhancements

2.1 rWeb Migration

The scope of migrated features from rWeb to R&S®Web Application Firewall have been increased. The following configurations from rWeb are now migrated:

• NTP,

• Syslog destination,

• SMTP destination,

• Application monitoring.

For more details about which feature is automatically migrated, see the page Migration status from rWeb.

2.2 SSL Cipher profiles

The view of SSL Cipher profiles has been improved to provide a better ciphers management. Ciphers can now be simply filtered by names:

Further enhancements will continue in next versions.

2.3 Components upgrade

• Elasticsearch and Kibana from 5.6.10 to 5.6.14

• NodeJs from 8.9 to 8.15

• Kernel from 3.10.0-862.14.4.el7.x86_64 to 3.10.0-957.1.3.el7.x86_64

• rsyslog from 8.37.0-1.el7.x86_64 to 8.40.0-1.el7.x86_64

3 Behavior changes

3.1 Monitoring frequency

The monitoring frequency has been decreased to every 1 minute instead of every 15 seconds.

3.2 OpenSSL version migration

We have decided to not build our own OpenSSL and use the one from the CentOS system. It allows use to have the same SSL behavior for each component (Apache, Curl, Backend Monitor, etc …). This leads to deprecate some

ciphers and elliptic curves.

3.2.1 SRP SSL ciphers removed

Secure Remote Password ciphers are not handled by the Web Application Firewall anymore. ‘SRP-*’ ciphers have been marked has “not supported” in SSL cipher profiles. They have to be removed from the ‘Selected Ciphers’ list before applying


Here is the list of unsupported ciphers since the 6.5.2 version:










For more information about ciphers see the SSL Cipher Profiles3 page.

3.2.2 SSL Elliptic Curve

The Elliptic Curves list that we handle as changed, we now supported the following curves:

• secp256k1 : SECG curve over a 256 bit prime field

• secp384r1 : NIST/SECG curve over a 384 bit prime field

• secp521r1 : NIST/SECG curve over a 521 bit prime field

• prime256v1: X9.62/SECG curve over a 256 bit prime field

4 Bug fixes

Download our Release Notes for more information

5 Known Issues

Download our Release Notes for more information

Request information

Do you have questions or need additional information? Simply fill out this form and we will get right back to you.

I want to receive information from Rohde & Schwarz via

Marketing permission

What does this mean in detail?

I agree that Rohde & Schwarz GmbH & Co. KG and the Rohde & Schwarz entity or subsidiary company mentioned in the imprint of this website, may contact me via the chosen channel (email or postal mail) for marketing and advertising purposes (e.g. information on special offers and discount promotions) related to, but not limited to, products and solutions in the fields of test and measurement, secure communications, monitoring and network testing, broadcast and media, and cybersecurity.

Your rights

This declaration of consent may be withdrawn at any time by sending an email with the subject "Unsubscribe" to Additionally, a link to unsubscribe from future email advertisements is contained in each email sent. Further details on the use of personal data and the withdrawal procedure are set out in the Statement of Privacy.

Your request has been sent successfully. We will contact you shortly.
An error is occurred, please try it again later.