Developers looking to keep their web application performant, resilient, and secure, introduce AWS edge services to their hosting infrastructure. AWS edge services encompass Amazon CloudFront, a global Content Delivery Network, AWS WAF, a security control to manage application layer threats, edge functions such as Lambda@Edge and CloudFront Functions to supercharge the functionalities of web applications, and AWS Global Accelerator, a network level accelerator.
Incorporating AWS edge services into web application technology stacks adds multiple benefits:
- Faster web: With caching, image/text compression, and modern internet protocols like HTTP/3 and TLS 1.3. Static and dynamic applications are accelerated by terminating TLS connections close to viewers from distributed edge locations, maintaining persistent TCP connections to origins over AWS’s private backbone network.
- Higher reliability: With origin failovers, connection retries, and multi-Region architectures.
- More security controls: such as TLS policy enforcements, access control, DDoS protection at infrastructure layer, blocking HTTP floods using AWS WAF, managing automated bot traffic using Bot Control and preventing CVE exploits using managed rules for AWS WAF by AWS Threat research team.
- Functionalities at the Edge: Centralize operations like redirections, authorization or A/B testing across micro-services at the edge, enable dynamic origin routing and request adaptation, etc..