Sold by: Radware
Radware Cloud WAF is a fully managed Cloud Application Protection Service providing the industry's most comprehensive web application security solution. It integrates Radware's cloud-delivered WAF technology, API protection, Bot management, application layer DDoS protection, client-side protection, analytics, threat detection and security feeds in a single portal.
4.6
Overview
Radware Cloud WAF is a fully managed Cloud Application Protection Service providing the industry's most comprehensive web application security solution. The service integrates Radware's Cloud WAF, API Protection, Bot management, client-side and application layer DDoS protection in a single portal that provides security analytics, threat detection and real-time security feeds to protect applications against hacking, malicious bots, API exposure, Web DDoS attacks, supply chain attacks and other vulnerabilities. Radware's combination of negative and positive security models provides a complete level of protection against OWASP Top 10 threats and zero-day attacks. API Discovery and Protection - End-to-end API solution from Discovery to protection at a click of a button. Radware auto API discovery maps all of your applications documented and undocumented third-party APIs, automatically generates Open API schema files, generates tailored security policies to detect and block API-focused attacks in real time and enforce protection across all your APIs. Radware's advanced API protection eliminates your documenting and protecting APIs overheads and keeps your organization protected across the board. Bot Management - Integrated Bot Manager provides comprehensive mitigation options, such as Blockchain-based Crypto challenges to counter attacks. It ensures precise bot management for web, mobile, and API traffic by employing behavioral modeling, collective bot intelligence, and fingerprinting. This defense guards against all OWASP 21 automated threats, including account takeover, credential stuffing, DDoS, fraud, and web scraping, fortifying online operations. Web DDoS Protection - Industry leading application-layer L7 protection against DDoS attacks, based on Radware's unique machine-learning-based behavioral detection that distinguishes between legitimate and malicious traffic, and automatically generates granular signatures in real-time to protect against zero-day attacks. Best-in-class security against a wide variety of threats, including HTTP Floods, HTTP bombs, low-and-slow assaults, Brute Force attacks, and disruptive web DDoS Tsunamis. Client-side Protection - Easily block requests to suspicious third-party services in your supply chain and adhere to data security compliance standards. Protect against client-side attacks coming from third party JS services - Formjacking, Skimming,Magecart, automatically and continuously discover all third-party services in your supply chain with detailed activity tracking, as well as get alerts & threat level assessment according to multiple indicators, including script source and destination domain. Pricing We have 3 different pricing packages - Standard, Advanced and Complete. The Standard and Advanced packages come with some of the features while Complete provides full coverage.
Highlights
- Fully Managed Web Application Protection Service - 24x7 Fully managed security service by Radware's expert Emergency Response Team(ERT). Protect Against OWASP Vulnerabilities - Stay protected against 150+ known attack vectors, including the OWASP Top 10 Web Application Security Risks, Top 10 API Security Vulnerabilities, Top 21 Automated Threats To Web Applications, and Top 10 Client-side vulnerabilities
- Detect, Manage and Mitigate Bots - Detect and distinguish between good and bad bots to protect websites, mobile apps and APIs. Easily optimize and customize your bot management policies to provide a better user experience and drive more ROI from your application traffic. End-to-end API Protection - From discovery to enforcement at a click of a button, Radware combines behavioral analysis and policy automation to protect from increasingly sophisticated API assaults.
- Mitigate Application-Level DDoS Assaults - Radware's DDoS protection technologies provide the shortest time to detection and mitigation of most advanced and high volume HTTP-based DDoS assaults by utilizing patented behavioral analysis, machine learning-based engines. Protect Client-Side From Supply Chain Attacks - This solution offers advanced client side protection that ensures the protection of end users data when interacting with any third-party services in the application supply chain.
Details
Sold by
Categories
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/Mbps |
|---|---|---|
Cloud Application Protection Standard,10 Mbps,1 Application - Monthly | Cloud Application Protection Standard,10 Mbps,1 Application - Monthly | $638.00 |
Cloud Application Protection Standard,50 Mbps,1 Application - Monthly | Cloud Application Protection Standard,50 Mbps,1 Application - Monthly | $1,940.00 |
Cloud Application Protection Standard,100 Mbps,1 Application - Monthly | Cloud Application Protection Standard,100 Mbps,1 Application - Monthly | $3,069.00 |
Advanced_10 | Cloud Application Protection Advanced,10 Mbps,1 Application - Monthly | $1,276.00 |
Advanced_Addon | Cloud Application Protection Advanced,1 Application Add-On - Monthly | $127.00 |
Complete_10 | Cloud Application Protection Complete,10 Mbps,1 Application - Montly | $2,233.00 |
Complete_Addon | Cloud Application Protection Complete,1 Application Add-On - Monthly | $193.00 |
CDN_Add_on | Cloud Application Protection CDN Service Enablement - Monthly | $287.00 |
CDDOS_OnDemand | On-Demand Cloud DDoS Protection Service - Legitimate 10Mbps - Monthly | $2,750.00 |
CDDOS_AlwaysOn | Always-On Cloud DDoS Protection Service - Legitimate 10Mbps - Monthly | $4,950.00 |
Vendor refund policy
No refund offered
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
Online Support Service Portal -Appropriate for non-critical issues, such as general inquiries, requests for technical documentation/ information, schedule support during an upcoming maintenance window, view installed base and manage support cases.24x7, where Internet service is available
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include: Layer 7 Rewrite, Application Level Traffic Steering, Caching, SSL Offload, compression, acceleration. WAF (AppWall), SecureUR L
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include: Layer 7 Rewrite, Application Level Traffic Steering, Caching, SSL Offload, compression, acceleration. WAF (AppWall), SecureUR L
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include:Layer 7 RewriteApplication Level Traffic SteeringCachingSSL OffloadingWAF (AppWall)
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include: Layer 7 Rewrite, Application Level Traffic Steering, Caching, SSL Offload, compression, acceleration. WAF (AppWall), SecureUR L
Customer reviews
Computer & Network Security
User-Friendly Platform with Clear, Thorough Device Configuration Guidance
Reviewed on Mar 04, 2026
Review provided by G2
What do you like best about the product?
The platform is user-friendly, and the graphical interfaces are easy to understand and use. The operating logic is comprehensive, and the device configuration is explained clearly and thoroughly in the operating manual provided by the vendor.
What do you dislike about the product?
Sometimes certain policy configuration dynamics are difficult to implement for users with little operational experience.
What problems is the product solving and how is that benefiting you?
It certainly provides effective protection against application-based attacks, which is essential for a company whose business model is based on an online application.
Muhammad I.
Intuitive Dashboards and Real-Time Monitoring with Clear Security Insights
Reviewed on Mar 04, 2026
Review provided by G2
What do you like best about the product?
The intuitive dashboards and real-time monitoring provide clear, easy-to-understand insights into both traffic and potential threats.
What do you dislike about the product?
The service feels expensive, which may not be a good fit for smaller, budget-conscious organizations.
What problems is the product solving and how is that benefiting you?
It protects web applications and APIs from sophisticated, evolving threats, including OWASP Top 10 risks, zero-day attacks, API threats, and DDoS.
Rose A.
Detailed control over web traffic and threats
Reviewed on Mar 04, 2026
Review provided by G2
What do you like best about the product?
The fact that Radware Cloud WAF provides such a great degree of control over application security policies is what I like most about it. I use it every day in our online business of retailing products to secure the checkout processes and the customer accounts. The number of features enables us to develop granular rules of various endpoints and user behaviors. Due to its usage frequency, it has become a fixed stack in our security stack. I also like the attack logs, which are detailed, and are useful during internal security analysis and audits.
What do you dislike about the product?
The reliance on the experienced staff is another problem. Some of the policy behaviors and log details cannot be comprehensible without advanced knowledge. The features are strong and may bewilder the less experienced analysts. The lack of knowledge may extend the response time due to its frequent use. This made us invest further in special training which made our process of dealing with our cybersecurity team more costly.
What problems is the product solving and how is that benefiting you?
It is dealing with the current menace of web attacks against our public applications. Prior to the adoption, we had experienced frequent bot traffic and attempted injection attacks on our customer portal. Protection policies are now regular and organized with regular usage frequency. The list of features enables us to use layered defenses on APIs and login systems. This has minimized emergency security increases and enhanced confidence between IT and executive management.
PEDRO PABLO V.
Powerful, Adaptive Security with Seamless Integration and Strong Support
Reviewed on Mar 03, 2026
Review provided by G2
What do you like best about the product?
Powerful and Adaptive Security Protection, Ease of Use and Operational Efficiency, Flexible Deployment and Seamless Integration, High-Quality Customer Support
What do you dislike about the product?
User Experience & Management,Configuration and UI Complexity, Slow Management Operations: Security & Support Concerns: History of WAF Bypass Vulnerabilities.
What problems is the product solving and how is that benefiting you?
Overwhelming Complexity and Sophistication of Modern Web Threats
Protection from Advanced and Zero-Day Attacks:
Security Gaps and Inefficiency in Hybrid and Multi-Cloud Environments
High Operational Overhead and Alert Fatigue
Protection from Advanced and Zero-Day Attacks:
Security Gaps and Inefficiency in Hybrid and Multi-Cloud Environments
High Operational Overhead and Alert Fatigue
Telecommunications
Clean, Modern Web UI That Makes Status and Metrics Easy to Visualize
Reviewed on Mar 03, 2026
Review provided by G2
What do you like best about the product?
The Web interface is now very clean and has a modern look. It's quite easy to visualize app status, expiring certs as well as general metrics and indicators.
What do you dislike about the product?
There has been a recent period where admin portals were under migration or some kind of merge, which cause a bit of confusion.
What problems is the product solving and how is that benefiting you?
Protecting our perimeter Web sites, which we have in a certain amount.