AWS Shield

Maximize application availability and responsiveness with managed DDoS protection

Automatically detect and mitigate sophisticated network-level distributed denial of service (DDoS) events.

Customize application protection against DDoS risks through integrations with Shield Response Team (SRT) protocol or AWS WAF.

Gain visibility, insights, and cost savings for DDoS events that impact your AWS resources.

AWS Shield is a managed DDoS protection service that safeguards applications running on AWS.

AWS Shield Animated Explainer Video (1:31)

Why AWS Shield?

AWS Shield Advanced is a tailored protection program that identifies threats using exabyte-scale detection to aggregate data across AWS.

Protect applications and APIs from SYN floods, UDP floods, or other reflection attacks.

Deploy inline mitigations such as deterministic packet filtering and priority-based traffic shaping to stop basic network-layer attacks.

Activate automatic detection, mitigation, or protection for each resource type per AWS account.

Learn how to safeguard your applications with Shield.

Explore AWS Shield »

Learn more about the cost efficiency of Shield.

Get always-on, heuristics-based network flow monitoring and inline attack mitigation.