Vulnerability Management for Public Websites with AWS Web Application Firewall (WAF)

WAF or web application firewall helps protect your web applications from common web exploits such as SQL injection, Cross site scripting or XSS, HTTP flood attacks etc. These types of attacks can compromise security and data, affect availability of the web application or allow attackers to use resources without your knowledge and incur exorbitant amounts of usage bills. AWS WAF can be deployed on either Amazon CloudFront as part of your CDN solution, the Application Load Balancer (ALB) that fronts your web servers or origin servers running on EC2, or Amazon API Gateway for your APIs.

All components required for this available in a form of a CloudFormation template, from which users can select from a set of preconfigured rules for a web ACL (Access control list) according to their requirement. The CloudFormation can be deployed and customized as shown below:

The CloudFormation deploys an architecture similar to the one shown below including an AWS WAF with rules, S3 bucket, AWS lambda etc.

Image courtesy: Amazon Web Services (AWS)

This solution protects web applications against:

The solution mentioned above can be integrated into your existing AWS ACL/WAF solution and can be modified to protect multiple types of web applications.

We hope this helped. Please let us know if you have any questions at solutions at stackArmor dot com.