Requiring businesses to secure their web sites, regulators are increasingly and standards are becoming more prescriptive but many businesses, especially the smaller ones, are still not compliant. A heavy burden is placed on the smaller businesses because becoming compliant is expensive and time consuming and places. An easily implemented solution to otherwise expensive web application security requirements is provided by a freely available web application firewall from Danish Armorlogic.

The number of web applications (content management system, extranet, e-commerce, etc.), with every company today having a presence on the Internet, is increasing, and their growing importance to all aspects of business is obvious.

But it is estimated that 70% of current web applications are still open to attack.

Web applications continue to remain vulnerable, while IT professionals work to secure the network perimeter. Visitors to these websites are also threatened by web application vulnerabilities, along with the organization running the application. These visitors may lose their privacy.

Requiring companies to secure their web applications and thus to purchase web application firewalls having source code reviewed and spending valuable resources fixing security problems, regulators are therefore increasingly.

The price of the open source solution is a lot of time spent creating and adjusting the policy, as there is no such thing as a free lunch. The free web application firewall from Armorlogic will require the policy to be manually adjusted as applications change because is automated.

Some reasons for Armorlogic being able to offer their web application firewall at such attractive prices are that Profense is a "do it yourself appliance". Including a minimalized OS (OpenBSD) which will turn a piece of server hardware into an appliance, Armorlogic provide an ISO image with a complete package. Thus Armorlogic does not have to spend money on specialized hardware. Others have done a lot of work for Armorlogic making high quality Open Source software (OpenSSL, Apache, OpenBSD, etc.). Armorlogic rely on high numbers instead of high margins.