Business & Technology

Fortinet Delivers Advanced Web Application Protection Through New Managed Rules for AWS WAF Service

By Mark Byers | November 30, 2017

Regardless of where an application is hosted, once it is exposed to the internet it becomes a target. Internal and externally facing websites inherently have the same weaknesses and vulnerabilities as a website offered through a hosting provider, or even one you may host in your own data center.

For organizations that host their web-based applications on Amazon Web Services, AWS offers a convenient and easy to deploy WAF called AWS WAF. This WAF offers many protections and is a simple add on through the AWS Management Console or APIs.

To further expand AWS WAF, Amazon is welcoming vendors to join AWS in offering pre-packaged rule groups for AWS WAF. Customers can choose rule sets to best meet their needs and provide flexibility in the protection they want for their applications.

Fortinet is one of the first companies to participate in the expansion of the AWS WAF service with a set of four packaged rule sets. AWS WAF customers can choose from basic WAF rule sets that provide protection from cross-site scripting, SQL injection, and malicious botnets, while our advanced rule set offers the latest general application attack types and known vulnerabilities. Powered by FortiGuard Labs, this advanced rule set provides up-to-date signatures that address known Common Vulnerabilities and Exposures (CVEs) along with threats that target a broad set of application attack vectors. For customers that want complete protection from the OWASP Top 10 web application threats, Fortinet also offers a comprehensive package of all our rule sets at a discounted price.

Fortinet’s new rule sets are based on the FortiWeb web application firewall security service signatures, and are updated on a regular basis to include the latest updates from FortiGuard Labs. AWS WAF customers can now enjoy nearly the same level of signature protection offered to FortiWeb customers, in an easy-to-deploy and easy-to-manage form factor.

For AWS customers that need more advanced capabilities than what is offered by the Managed Rules for AWS WAF Service, Fortinet also offers numerous options for AWS customers, including four different virtual machine versions of FortiWeb with options for either bringing your own licenses or signing up for FortiWeb on-demand via the AWS Marketplace.

Our FortiWeb VM options for AWS have all the features of our industry leading hardware appliances, including behavioral threat detection to prevent zero-day attacks, user and device tracking for quick analytics, and granular configuration options to fine-tune actions for your AWS web-based applications.

As an AWS Security Competency partner, we’re proud to offer customers the best in security for the web-based applications hosted by Amazon. No matter how large or small an application on AWS may be, Fortinet offers flexible, convenient, and tailored ways to deliver industry-leading threat protection to ensure applications and users are safe from threats targeting known and unknown exploits – even in multi-cloud settings.

For more information on Fortinet AWS solutions, click here.

For more information on FortiWeb Web Application Firewalls click here.

Fortinet at AWS re:Invent: AWS Promotional Credits & Visa Gift Cards

During AWS re:invent 2017, Fortinet is offering $250 AWS Promotional Credit in conjunction with Fortinet’s 15-Day Free Trial offerings. Visitors will scan a QR code at Fortinet Booth #1340 to receive the AWS promotional credits.

Also, get all your Fortinet product questions answered by the experts and test-drive FortiGate, FortiWeb, FortiSandbox, and FortiAnalyzer through our 15-Day Free Trial offers. Upon finishing the product review at the AWS Marketplace, you will receive $50 Visa gift card at the Fortinet Booth #1340.

See how customers are already leveraging Fortinet and AWS: Security7 Networksicare, and Coopenae