This presentation discusses how to properly measure the accuracy of Web Application Firewalls. The presentation explain the 4 attributes that must be measured (FP, FN, TP, TN) and how to properly calculate a WAF's accuracy.
High recall is important if you are looking for a secure product
High Precision is important for those looking for a system that doesn’t block valid users by mistake