This is the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

Overview

    Service Overview

    WAF (Web Application Firewall) is a service that monitors website traffic to securely protect web applications. It quickly detects and analyzes HTTP and HTTPS‑based security threats that target website vulnerabilities.

    Features

    • Powerful Detection/Blocking: We monitor the HTTP and HTTPS traffic of web pages registered by the customer to detect hacker attack attempts in real time. We classify attacks such as SQL Injection, Cross-Site Scripting (XSS), Web Scan, and provide various defense features needed for web security to respond immediately to new web attack types.
    • Stable web service operation support: We address new security threats through web firewall signature patterns and firmware updates. We detect hacker attempts, including emerging web threats such as OWASP (Open Web Application Security Project) Top 10 attacks, the National Intelligence Service’s eight major vulnerabilities, Zero-Day attacks, and Bad Bots, to help you operate an efficient and stable web service.
    • Convenient Security Management: By monitoring various attack events in real time and notifying the customer’s representative, it enables proactive response to security threats. It also provides monthly reports so you can review event details.

    Service Architecture Diagram

    Diagram
    Figure. WAF concept diagram

    Provided features

    We provide the following features.

    • Provision of intrusion detection/analysis and monitoring information
      • 24x365 event monitoring (alert issuance, monthly report provision)
      • Attack classification (Injection, XSS, File Include, File Up/Download, Web Scan, etc.) through web firewall event analysis
      • Detection of latest attack patterns (e.g., Apache Struts vulnerabilities)
    • Intrusion Response
      • Provide IP information for attack attempts targeting registered URLs (recommended to block on Samsung Cloud Platform network firewall)

    Component

    We install a WAF license on the Virtual Server within the VPC of Samsung Cloud Platform and provide the service.

    Constraints

    To use WAF, first verify the following items.

    • If the WAF is configured as a single instance, service continuity cannot be guaranteed in the event of a failure of the WAF installation VM or the WAF application.
      • The Load Balancer and WAF of Samsung Cloud Platform do not support bypass.
    • The security monitoring service provided by Samsung Cloud Platform is offered only for Pentasecurity products. (operation + monitoring product)
    • The WAF service is installed with direct support from an engineer, and it takes a certain amount of time from request to deployment.

    Provision status by region

    WAF is available in the environments below.

    RegionProvision status
    Korea West (kr-west1)Not provided
    Korea East (kr-east1)Not provided
    South Korea South 1 (kr-south1)Provided
    South Korea South 2 (kr-south2)Provided
    South Korea South 3 (kr-south3)Provided
    Table. WAF regional availability status

    Prior Service

    This is a list of services that must be pre-configured before applying for the service. For details, refer to the guide provided for each service and prepare in advance.

    • When using the WAF service, a WAF license is installed on the Virtual Server and provided. Install a Virtual Server that matches the service specifications you want first.
    Service CategoryServiceDetailed description
    ComputeVirtual ServerVirtual server optimized for cloud computing
    Table. WAF pre-service