Threat model
Dhal is designed for application-layer request security.
Helps reduce
- API abuse;
- endpoint-specific brute force;
- credential stuffing;
- suspicious bot traffic;
- common web payload probes;
- scanner behavior;
- accidental unsafe route exposure;
- noisy attack traffic at the application layer.
Uses application context
Dhal can use:
- route;
- user ID;
- tenant ID;
- API key ID;
- response outcomes;
- content type;
- body shape;
- app-specific config.
Complements other controls
Dhal should be deployed alongside:
- CDN/edge WAF;
- DDoS protection;
- reverse proxy hardening;
- secure auth;
- input validation;
- dependency scanning;
- application logging and alerting.