Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 25.2.0
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    User Guide

    Home FortiAppSec Cloud User Guide
    25.2.0
    26.2.0
    26.1.0
    25.4.0
    25.3.0
    25.2.0

    Advanced Bot Protection

    Advanced Bot Protection

    FortiAppSec Cloud Advanced Bot Protection (ABP) is a Fortinet SaaS advanced bot mitigation solution designed to detect and protect against sophisticated bots that may be used to conduct malicious automated attacks on your online applications, such as data harvesting, credential stuffing, account take-over attempts, DDoS attacks, and other fraudulent activities. To safeguard your digital assets, websites, and applications, ABP employs advanced deep learning algorithms and behavior analysis to identify and block suspicious activities. It analyzes user behavior patterns, device fingerprints, and more to distinguish between genuine users and malicious bots.

    FortiAppSec Cloud Advanced Bot Protection features a multidimensional deep learning engine that learns and tracks bot attacks over time using sophisticated AI model training. Here are some of the key ways that enable ABP to detect and stop malicious bots while allowing legitimate traffic through:

    • IP reputation database — Maintains a real-time database of known or suspicious IP addresses associated with bots and blocks traffic from them.
    • Browser Fingerprinting — Creates unique fingerprints for each visitor by cross-referencing various browser/device attributes to recognize repeat offenders. This includes detecting crawler-specific attributes, checking browser and OS inconsistencies.
    • Biometric detection — Analyzes visitors' device interactions to determine if a user is a real human or a bot, as biometric signals are very difficult for bots to fake. This includes monitoring client events (over 250 characters), mouse movements (such as scrolling behavior and clicks), and keyboard clicks.
    • Machine learning models — ABP uses AI to train models on vast datasets and continuously improve and refine bot detection capabilities.
    • Real-time threat intelligence (AI Score) — Leverages global threat intelligence to stay on top of new and emerging bot threats and update protections. The AI Score is compiled through deep learning and data correlation, multi-dimensional comparison, and multivariate data over time.
    • Comprehensive analytics — Provides detailed bot traffic analytics and attack forensics to enhance understanding of bot patterns and strategies.
    • Integration with FortiADC and FortiWeb — Allows FortiADC and FortiWeb to send telemetry data to the bot protection system, providing deeper insights into sophisticated bots for more accurate detection and blocking.

    The factors listed above collectively contribute to the calculation of the Risk Score — a numerical value ranging from 0 to 100 that reflects the likelihood of a user being a bot.

    Previous
    Next

    Advanced Bot Protection

    Advanced Bot Protection

    FortiAppSec Cloud Advanced Bot Protection (ABP) is a Fortinet SaaS advanced bot mitigation solution designed to detect and protect against sophisticated bots that may be used to conduct malicious automated attacks on your online applications, such as data harvesting, credential stuffing, account take-over attempts, DDoS attacks, and other fraudulent activities. To safeguard your digital assets, websites, and applications, ABP employs advanced deep learning algorithms and behavior analysis to identify and block suspicious activities. It analyzes user behavior patterns, device fingerprints, and more to distinguish between genuine users and malicious bots.

    FortiAppSec Cloud Advanced Bot Protection features a multidimensional deep learning engine that learns and tracks bot attacks over time using sophisticated AI model training. Here are some of the key ways that enable ABP to detect and stop malicious bots while allowing legitimate traffic through:

    • IP reputation database — Maintains a real-time database of known or suspicious IP addresses associated with bots and blocks traffic from them.
    • Browser Fingerprinting — Creates unique fingerprints for each visitor by cross-referencing various browser/device attributes to recognize repeat offenders. This includes detecting crawler-specific attributes, checking browser and OS inconsistencies.
    • Biometric detection — Analyzes visitors' device interactions to determine if a user is a real human or a bot, as biometric signals are very difficult for bots to fake. This includes monitoring client events (over 250 characters), mouse movements (such as scrolling behavior and clicks), and keyboard clicks.
    • Machine learning models — ABP uses AI to train models on vast datasets and continuously improve and refine bot detection capabilities.
    • Real-time threat intelligence (AI Score) — Leverages global threat intelligence to stay on top of new and emerging bot threats and update protections. The AI Score is compiled through deep learning and data correlation, multi-dimensional comparison, and multivariate data over time.
    • Comprehensive analytics — Provides detailed bot traffic analytics and attack forensics to enhance understanding of bot patterns and strategies.
    • Integration with FortiADC and FortiWeb — Allows FortiADC and FortiWeb to send telemetry data to the bot protection system, providing deeper insights into sophisticated bots for more accurate detection and blocking.

    The factors listed above collectively contribute to the calculation of the Risk Score — a numerical value ranging from 0 to 100 that reflects the likelihood of a user being a bot.

    Previous
    Next