Do your Internet-facing workloads need protection from threats? Work with ScaleSec experts to deploy the AWS WAF to help protect against common web exploits and bots that can affect availability, compromise security, or consume excessive resources.

With AWS WAF you can:

• Filter web traffic: Create rules to filter web requests based on conditions such as IP addresses, HTTP headers and body, or custom URIs.
• Prevent account takeover fraud: Monitor your application’s login page for unauthorized access to user accounts using compromised credentials.
• Define criteria for web requests including IP addresses, geographical restrictions by country, header values, strings, and more. With AWS WAF, you can create security rules that control bot traffic and block common attack patterns such as SQL injection or cross-site scripting (XSS).

This offering includes the following activities:

• Review Internet-facing application architecture
• Draft design for AWS WAF including protected resources
• Draft design for initial rules and rule groups
• Cross-train and hand off to your operations team

Applicable AWS services include:

• AWS WAF
• AWS Shield
• Amazon CloudFront
• Application Load Balancer
• Amazon API Gateway
• AWS AppSync GraphQL API
• Amazon Cognito user pool

Outcomes for this offering include:

• Revised security architecture for AWS WAF
• Code and templates for configuring the AWS WAF and rules
• Operations guide