Prophaze WAF supports the following Negative security model
Signature-based - Detect attacks by performing a string or a regular expression match against traffic.
Rule-based - Rules are similar to signatures but allow for a more complex logic to be formed (e.g. logical AND, logical OR). They also allow for specific parts of each transaction to be targeted in a rule.