Human-Detector (HD): Core Security Module Overview

What is Human-Detector (HD)?

The Human-Detector (HD) is a core security module within Nitrogen (N7) designed to distinguish between legitimate human users and automated scripts (bots) interacting with your website or application.

Beyond basic detection, HD analyzes the “request journey” to assess behavioral patterns, enabling it to identify requests with malicious intent and mitigate threats in real-time.

HD is particularly useful for securing high-value and sensitive pages/APIs, such as account login, cart, and checkout flows, where security risks are higher.

How Does HD Work?

• Behavioral Analysis: Evaluates the sequence of requests and user interactions to detect anomalies.

• Response Actions: Supports flexible actions such LOG ONLY, BLOCK and REDIRECTION modes as allowing, blocking malicious traffic and redirecting the malicious traffic to homepage.

For example:

• On www.nviztest.com, HD can be configured for the cart page pattern ^/cart(\?.)$ to protect against automated cart manipulations and scraping attempts.

Note: For demonstration purposes, this guide uses www.nviztest.com.

Key Benefits of HD

• Advanced Human Detection: Identifies real human traffic and allows only legitimate requests.

• Reduced Risk of Account Takeovers: Protects sensitive pages/APIs from credential stuffing and brute-force attacks.

• Improved Application Security: Prevents automated exploitation of application vulnerabilities.

• Optimized Resource Utilization: Reduces server load by filtering non-human traffic at the edge.

Advantages of HD

• Edge-Level Protection: Stops malicious traffic before it reaches your origin server.

• Customizable Configurations: Can be fine-tuned for web and app integrations.

• Seamless User Experience: Legitimate users are unaffected, while bad actors are challenged or blocked.

Sample endpoints:

• /customer/account/login
• /customer/account/create
• /cart
• /checkout
• /api/v1/orders
• /api/v1/checkout
• /contact-us
• /feedback/submit