AWS WAF Security Automations Now Supports Log Analysis

Posted on: Apr 30, 2019

AWS has updated AWS WAF Security Automations, a solution that automatically deploys a single web access control list (web ACL) with a set of AWS WAF rules designed to filter common web-based attacks.

The updated solution now supports log analysis using Amazon Athena and AWS WAF full logs. When activated, AWS CloudFormation provisions an Amazon Athena query and a scheduled AWS Lambda function responsible for orchestrating Athena executions, processing result output, and updating AWS WAF. The Lambda function is triggered by an Amazon CloudWatch event configured to execute every five minutes. This update allows customers who have knowledge of SQL to have more flexibility to implement customized rate-based rules.  

Additional AWS Solutions offerings are available on the AWS Solutions webpage, where customers can browse solutions by product category or industry to find AWS-vetted, automated, turnkey reference implementations that address specific business needs.