So, to stress it again it’s not just enough to architect and design an application, but it’s equally important to secure an application.Ĭapital One used AWS WAF (Web Application Firewall) to protect the Web Application, but it was not configured properly because of which the hacker was able to get the access to the data in S3 and download it. We can learn in detail about this in the AWS Course. Later it was found that the data from 30 other organizations was also downloaded from AWS. An ex-AWS employee was able to exploit this vulnerability and download reams of customer data from S3. If not properly secured, the application data might get into the wrong hands as in the case of the recent Capital One incident.Ĭapital One hosted a Web Application on EC2 and it was not secured properly. While creating these applications, it’s equally important to secure the application and protect the data. Moving on with this article on ‘How To Secure Web Application With AWS WAF?’ Getting Started With Some FundamentalsĪWS provides services like EC2, ELB (Elastic Load Balancer), S3 (Simple Storage Service), EBS (Elastic Block Storage) to create useful and fancy applications quickly and with less CAPEX (CAPital EXpenditure). Sequence of steps to get started with AWS WAF.Following pointers will be covered in this article,
This article will tell you how you can Secure Web Applications with AWS WAF and follow it up with a practical demonstration. Import * as apigateway from import * as wafv2 from import * as cdk from export class WafStack extends cdk.
0 kommentar(er)
