1. Do you use any of these?
● API Gateway
● Application Load Balancer
● CloudFront
2. Securing your Public API with AWS WAF
Rafi Kurnia Putra
Cloud Infrastructure Engineer
Traveloka
AWS User Group Jakarta x Pop-up Loft - 22/10/2019 - WeWork, Noble House Kuningan Lv.30
3. In the last 7 days, we blocked...
● Over millions of DoS attacks.
● Thousands of WAF attacks.
4. Our Problems
● Centralized WAF management.
● Hard to attribute WAF costs.
● Have large number of public endpoints that:
○ Keep growing.
○ Hosted in multiple AWS Accounts.
○ Owned and maintained by various teams.
6. What is AWS WAF?
● Designed to helps protect your app from common attacks.
● Controls which traffic to allow or block to your app.
● Allows user to create custom rules.
9. Why AWS WAF
● Well integrated with other AWS Services.
● Access control based on AWS IAM.
● Covers common needs.
● Inexpensive.
● Decentralized.
● Cost attribution.
● Easy to set up WAF rules.
10. AWS WAF Limitations
● Very hard to analyze the WAF logs.
● It is difficult to trace the logs from a single request.
● Getting a dashboard for monitoring requires more setup.
● Can’t parse and validate JSON & XML payload