CoAP (RFC 7252) needs security proxy, same as HTTP Proxy?

The COnstrained Application Protocol is more like small footprint HTTP and I feel it is as vulnerable as HTTP. Do you guys think this also needs HTTP reverse proxy which can check all the POST from sensors to get filtered?
Also the sensors should be able to get only virus free data from Servers.
Things get scary when you have HTTP to CoAP conversion at gateway....