CDN is an industry-recognized content distribution acceleration product that accelerates website access efficiency and enhances user experience. Gartner predicts that more than 50% of Internet traffic in 2019 will be accelerated through the CDN content distribution network.
However, more and more companies are also aware of the threat posed by malicious cyber attacks to extraordinary user experience, because cyber attacks have far more impact on website / application performance and business data security than other factors. According to Gemalto ’s “Breach Level Index”, in the first half of 2018 alone, 945 large-scale data breaches occurred worldwide, resulting in a total of 4.5 billion data breaches, an increase from 2017 133%.
With the gradual increase in network security risks, pure content acceleration services no longer meet the needs of CDN users. Faced with a complex network environment, CDN users need more easily deployed security protection capabilities, including: DDOS, WAF, CC, bot traffic management, API Gateway, etc.
If you have requirements for CDN WAF security protection, please apply for activation >>
Alibaba Cloud launches CDN WAF compatible security and acceleration capabilities
In order to enable CDN users to deploy security protection capabilities more conveniently and quickly, Alibaba Cloud CDN launches the WAF function, which can be used through the one-click activation of the CDN console to use the cloud shield Web application. CDN nodes with Web Application Firewall (WAF) performance are accelerated to solve the problem of content acceleration and security protection in complex network situations in one stop. It has the following advantages:
One-stop distribution + security capabilities
Alibaba Cloud CDN WAF is currently open to CDN users across the entire network. Users can activate WAF services at the click of a CDN console and start protection services for related domain names. While using security protection, you can also enjoy the efficient distribution capabilities of Alibaba Cloud CDN network 2500+ nodes, and truly realize the integrated solution of CDN and security.
First-class security protection capabilities
CDN combined with WAF capabilities to identify and protect malicious characteristics of business traffic, and return normal and safe traffic to the server. Avoid malicious intrusion of the website server, ensure the core data security of the business, and solve the problem of abnormal server performance caused by malicious attacks. Prevent Trojan horses from uploading and tampering with web pages and protect the credibility of the website.
CDN WAF security protection covers a wide range, including: common WEB attacks, injection attacks, website trojan attacks, cross-site scripting attacks, scanner attacks, WEB framework vulnerability, sensitive file download, directory traversal, etc.
CDN WAF provides virtual patches for the latest vulnerabilities exposed on the website, and provides quick repair rules to the greatest extent possible. And rely on the security team, fast vulnerability response speed, timely vulnerability repair capabilities.
At present, a large number of enterprises and government projects are required to face the requirements of security level protection construction, and WAF capability is the basic requirement for equal protection. Therefore, CDN WAF can also provide good support for users' equal protection construction.
Rich industry scenarios Cover
CDN's WAF service is mainly applicable to finance, e-commerce, O2O, Internet +, gaming, government, insurance and other industries. It protects websites from accelerating consumption while using CDN to accelerate the use of external malicious attacks Unexpected losses such as server resources, core data leakage, and tampering with page content, maintain website platform services and brand image, and ensure user experience.
At present, a domestic news website client is also one of the largest Chinese and multilingual news websites on the Internet. It is already using Alibaba Cloud CDN WAF to help it protect against security risks such as SQL injection, Webshell, and code execution, and avoid database information leakage. Web page tampering, server permission theft and other hazards.
Alibaba Cloud CDN WAF activation method
Users can
activate WAF security protection services on the CDN console with one click. The specific steps are as follows: 1. Log in to the CDN console: https://cdn.console.aliyun.com/waf
2. Navigate on the left Field, click the domain name management to enter the domain name management page, and perform security configuration on the left navigation bar of the specified domain name.
3. On the WAF page, turn on the WAF function configuration switch to modify the configuration.
4. Configure Web application attack protection and precise access control according to the page prompt.
In the future, Alibaba Cloud CDN products will continue to release more comprehensive security functions, including CC protection, precise access control, regional access restrictions, and machine traffic management functions. I hope you can continue to pay attention to Alibaba Cloud CDN.
If you have requirements for CDN WAF security protection, please apply for activation >>
