AWS WAF Managed Rules Launch

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
MANAGED RULES
on AWS WAF
A N D R E W T H O M A S ( G M , P e r i m e t e r P r o t e c t i o n )
S U N D A R J A Y A S H E K A R ( S r . P r o d u c t M a n a g e r , A W S W A F )
SID217
November 29, 2017

What to expect from this session
1. AWS WAF intro
2. What are we launching today?
3. Key benefits
4. Product details
5. Demo: How to get started?

What is a WAF?
Web Application Firewall
Monitors HTTP/S requests and
protects web applications from
malicious activities
Layer 7 inspection and mitigation tool

What is AWS WAF?
Web traffic filtering with
custom rules
• Rate based rules
• IP Match & Geo-IP filters
• Regex & String Match
• Size constraints
• Action: Allow/Block
Malicious request blocking
• SQLi
• XSS
Active monitoring & tuning
• CloudWatch
Metrics/Alarms
• Sampled Logs
• Count Action mode

Where AWS WAF can help
Application
layer
Bad botsDDoS Application attacks
HTTP floods
Content scrapers
Scanners & probes
CrawlersSQL injection
Application exploits
Social engineering
AWS WAF

Why we launched AWS WAF
“We don’t want to manage servers”
“We don’t want to pay thousands of $$”
“We want full API support for
DevOps”
Easy to deploy

AWS WAF available on
Amazon CloudFront Application Load Balancer

What do customers like about AWS WAF?
Fast incidence
response
Powerful, flexible rule
language
AffordableSecurity automation Preconfigured
templates
Easy to deploy

But we are not done. Challenges exist.
“I don’t want expensive Pro-Serv engagements to
write and tune my rules”
“I want to focus on writing web applications and
not security rules”
“I don’t have the resources to write rules that keep
up with the bad guys”

Earlier today we announced…
Managed Rules on AWS WAF
with five featured sellers!

We are excited to present to you …
Five trusted names in security

Featured sellers

What are Seller Managed Rules?
• Rule sets written and managed by trusted security
sellers on the AWS Marketplace
• Deployed on AWS WAF

Benefits
D e e p D i v e - M a n a g e d R u l e s o n A W S W A F

Rules managed by security experts (1/5)
 Rules from trusted names
 No need for your own Threat Research teams
 Reduces the need to write your own Rules
 Focus on building solutions for your customers

Choice of protections (2/5)
 Five sellers  Eleven products

Auto-updates (3/5)
 Ensure protection against new and emerging threats
 Security research teams monitor, tune, and
update Rules on a regular basis
 Rule updates happen within minutes
 No extra cost for updates

Pay as you go (4/5)
 Affordable and pay as you go
 No contracts needed
 No need for ProServ engagements
 Unsubscribe anytime

Easy to deploy (5/5)
 Easy subscription process
 Deployed on AWS WAF service
 Low maintenance

Summarizing – Key benefits
1. Rules managed by security experts
2. Choice of protections
3. Auto-updates
4. Pay as you go
5. Easy to deploy

Easy to get started

Deploy in three easy steps
Find rules on AWS WAF
console or AWS
Marketplace
Click and
subscribe
Associate rules in
AWS WAF

Demo
L e t ’ s s e e h o w t h i s i s d o n e

Pricing
P a y a s y o u g o

How are Managed Rules priced?
 Two pricing dimensions:
Rule Group monthly fee ($/month)
Request fee per Million Requests ($/Million Request)
 Sellers set their own prices in AWS Marketplace
 Seller prices are in addition to normal AWS WAF charges

Eleven new products!
A v a i l a b l e l a t e r t o d a y

Fortinet: Product details
3. GEN+KNOWN
•Advanced ruleset
•General Attacks
•Known Exploits
•FortiGuard proprietary
protections
•Injection attacks
•URL redirects
•HTTP response
splitting
2. BAD BOTS
•Malicious Bots
•Content Scrapers
•Vulnerability
Scanners
•Specialized
protections
•Protects from known
unwanted
automated clients
1. SQLI+XSS
•Basic protection
rules
•SQL Injection
•Cross Site Scripting
•Additive to AWS
XSS and SQLi
protections
4. OWASP Rules
•SQLi/XSS +
•General Attacks +
•Known Exploits
•Discount over
purchasing separately
•FortiGuard proprietary
protections

Imperva: Product details
• Reputation-based security
• Comment spam elimination
• Ensure search engine access
1. Managed Rules for IP
Reputation
2. Managed Rules for WordPress
Protection
• Protect your web applications built using
WordPress
• Detect and block requests targeting
WordPress vulnerabilities
• Decades of security experience and best practices – leveraging Imperva’s market-leading WAF
technology
• Ensure protection against new and emerging threats – security research team monitors, tunes,
and updates rulesets on a regular basis

Trend Micro: Product details
2. Content Management
Servers (CMS) Rules
Protects common CMS and EMS
including WordPress, Joomla,
and Drupal from known
vulnerabilities, and to help
meet PCI DSS requirements.
Trend Micro delivers proactive
global threat intelligence
against zero-hour threats to
ensure that you are always
protected.
1. Rules for Nginx and
Apache servers
Protects web servers, including
the Apache Suite (Apache
Httpd, Apache Struts, Apache
Tomcat) and Nginx, from
known vulnerabilities and
helps meet PCI DSS
requirements.

Trustwave: Product details
2. CMS Virtual Patches1. ModSecurity Virtual
Patching
Protection against common
CMS and EMS including
WordPress, Joomla, and
Drupal from known
vulnerabilities and to help
meet PCI DSS requirements.
Select Trustwave SpiderLabs
ModSecurity. As the threat
landscape evolves,
Trustwave SpiderLabs will
continue to provide new
patches.rity virtual patches.

Alert Logic: Product details
Security expert-crafted
protection
Protect while you patch.
No tuning required.
Cover last six months of
known WordPress
exploits
1. Virtual Patches for WordPress

Revisiting AWS WAF benefits
Fast incidence
response
Powerful rule
languageEasy to deploy
AffordableSecurity automation Preconfigured
templates

AWS WAF benefits
Fast incidence
response
Powerful rule
languageEasy to deploy
AffordableSecurity automation Managed
rules

Managed rules from security leaders

To learn more, visit …
https://aws.amazon.com/mp/security/WAFManagedRules/

THANK YOU!
Q u e s t i o n s ?

AWS WAF Managed Rules Launch

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to AWS WAF Managed Rules Launch

Similar to AWS WAF Managed Rules Launch (20)

More from Amazon Web Services

More from Amazon Web Services (20)

AWS WAF Managed Rules Launch