Saved in:
| Main Authors: | , , , , , , |
|---|---|
| Format: | Preprint |
| Published: |
2025
|
| Subjects: | |
| Online Access: | https://arxiv.org/abs/2512.06390 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1866915659061919744 |
|---|---|
| author | Hosain, Mehrab Shuvo, Sabbir Alom Ogbe, Matthew Mazumder, Md Shah Jalal Rahman, Yead Hakim, Md Azizul Pandey, Anukul |
| author_facet | Hosain, Mehrab Shuvo, Sabbir Alom Ogbe, Matthew Mazumder, Md Shah Jalal Rahman, Yead Hakim, Md Azizul Pandey, Anukul |
| contents | The modern web stack, which is dominated by browser-based applications and API-first backends, now operates under an adversarial equilibrium where automated, AI-assisted attacks evolve continuously. Content Delivery Networks (CDNs) and edge computing place programmable defenses closest to users and bots, making them natural enforcement points for machine-learning (ML) driven inspection, throttling, and isolation. This survey synthesizes the landscape of AI-enhanced defenses deployed at the edge: (i) anomaly- and behavior-based Web Application Firewalls (WAFs) within broader Web Application and API Protection (WAAP), (ii) adaptive DDoS detection and mitigation, (iii) bot management that resists human-mimicry, and (iv) API discovery, positive security modeling, and encrypted-traffic anomaly analysis. We add a systematic survey method, a threat taxonomy mapped to edge-observable signals, evaluation metrics, deployment playbooks, and governance guidance. We conclude with a research agenda spanning XAI, adversarial robustness, and autonomous multi-agent defense. Our findings indicate that edge-centric AI measurably improves time-to-detect and time-to-mitigate while reducing data movement and enhancing compliance, yet introduces new risks around model abuse, poisoning, and governance. |
| format | Preprint |
| id |
arxiv_https___arxiv_org_abs_2512_06390 |
| institution | arXiv |
| publishDate | 2025 |
| record_format | arxiv |
| spellingShingle | Web Technologies Security in the AI Era: A Survey of CDN-Enhanced Defenses Hosain, Mehrab Shuvo, Sabbir Alom Ogbe, Matthew Mazumder, Md Shah Jalal Rahman, Yead Hakim, Md Azizul Pandey, Anukul Cryptography and Security Artificial Intelligence Machine Learning Networking and Internet Architecture Performance K.6.5; C.2.0 The modern web stack, which is dominated by browser-based applications and API-first backends, now operates under an adversarial equilibrium where automated, AI-assisted attacks evolve continuously. Content Delivery Networks (CDNs) and edge computing place programmable defenses closest to users and bots, making them natural enforcement points for machine-learning (ML) driven inspection, throttling, and isolation. This survey synthesizes the landscape of AI-enhanced defenses deployed at the edge: (i) anomaly- and behavior-based Web Application Firewalls (WAFs) within broader Web Application and API Protection (WAAP), (ii) adaptive DDoS detection and mitigation, (iii) bot management that resists human-mimicry, and (iv) API discovery, positive security modeling, and encrypted-traffic anomaly analysis. We add a systematic survey method, a threat taxonomy mapped to edge-observable signals, evaluation metrics, deployment playbooks, and governance guidance. We conclude with a research agenda spanning XAI, adversarial robustness, and autonomous multi-agent defense. Our findings indicate that edge-centric AI measurably improves time-to-detect and time-to-mitigate while reducing data movement and enhancing compliance, yet introduces new risks around model abuse, poisoning, and governance. |
| title | Web Technologies Security in the AI Era: A Survey of CDN-Enhanced Defenses |
| topic | Cryptography and Security Artificial Intelligence Machine Learning Networking and Internet Architecture Performance K.6.5; C.2.0 |
| url | https://arxiv.org/abs/2512.06390 |