Presenter: Joy Jung (AWS Solutions Architect)
- AWS WAF is a web application firewall that helps protect your web applications or APIs against common web exploits that may affect availability, compromise security, or consume excessive resources.
- AWS WAF gives you control over how traffic reaches your applications by enabling you to create security rules that block common attack patterns, such as SQL injection or cross-site scripting, and rules that filter out specific traffic patterns you define.
- Unique namespace called "wafv2"
- Single API usage without "waf" or "waf-regional"
- No individual APIs for each tool type
- JSON format document-based rule creation
- Configure all rules with JSON file and simply call
UpdateWebACLAPI for application
- No longer limited to 10 rules per WebACL
- Elimination of various service limitations
- ex) Filter count limitations
- Simplified and intuitive changes
- QR logic, multi-transformation
- Rulesets managed and maintained by AWS
- Reflects security knowledge and threat detection acquired internally by Amazon
- Includes OWASP Top 10 and anti-bot IP reputation list
- Takes about 1.5 hours! I need to try it
2. AWS New Macie/Detective – Introduction to Key Features of the New Macie Service and New Security Service Detective
Presenter: Eun-soo Shin (AWS Security Specialist Solutions Architect)
- Renamed existing Macie service -
Macie Classic - Customers using Macie Classic can also use the new Macie simultaneously
- Optimized for monitoring data stored in AWS and detecting sensitive information
3. Macie Classic Customers Can Also Use the New Macie and Can Migrate According to the Following Policy
- Export existing classification results
- Deactivate Macie Classic
Major Changes
- Anomaly detection and CloudTrail log analysis for S3 have been migrated to GuardDuty
+
I felt once again that the services provided by AWS are truly diverse...!
There are so many products I need to try and want to try! The journey is long!!