One of the services is WAF(WEB APPLICATION FIREWALLS)
Firewall Basics:
Purpose: Prevent unauthorized access to networks by inspecting incoming and outgoing traffic against defined security rules.
Web Application Firewall (WAF):
Purpose: Protect web applications against common web attacks.
Key Protections: Defense against SQL injection and cross-site scripting (XSS).
Real-World Application: Deployed on EC2 instances or CloudFront to block XSS attacks directly.
Another services is DDOS(DISTRIBUTED DENIAL OF SERVICES)
a DDOS attack causes a traffic jam on a website or web application in an attempt to cause it to crash
Distributed Denial of Service (DDOS) Protection:
Service: AWS Shield.
Features: Always-on detection for DDOS attacks.
Types: Shield Standard (free) and Shield Advanced (paid).
Supported Services: CloudFront, Route 53, ELB, AWS Global Accelerator.
Real-World Application: Real-time notifications and assistance during DDOS attacks.
We also have MACIE
MACIE (Data Discovery and Protection):
Purpose: Discover and protect sensitive data using machine learning.
Key Features: Evaluates S3 environments and uncovers personally identifiable information (PII).
Real-World Application: Identifying and securing sensitive data like passport numbers stored on S3.
Each of these services plays a crucial role in securing different aspects of web applications and infrastructure. Firewalls like WAF protect against specific attacks, DDOS protection services like AWS Shield defend against large-scale attacks, and data discovery tools like MACIE help identify and protect sensitive information within cloud environments. These tools are vital components in maintaining the security and integrity of online applications and data.
Top comments (0)