News
Cyber Security Cloud Announced Two New Features for WafCharm: “Notification” and “Reporting”
In response to the addition of AWS WAF's new comprehensive logging functionality, Cyber Security Cloud, Inc. (CSC) has developed and released two new features, "Notification" and "Reporting" for WafCharm, a service for automation of AWS WAF operations using AI & Big Data.
Utilizing AWS WAF’s New Comprehensive Logging Functionality, Cyber Security Cloud Announced Two New Features for WafCharm: "Notification" and "Reporting". These functions were added to WafCharm with the aim to further improve convenience in terms of false-positive correspondence and system operation.
■ Background of new feature development
Previously, detection history could only be obtained by sampling and due to restriction, only past 3 hours of the sampling data could be accessed, therefore making it harder to gather information correctly and corresponding to false-positive, etc. To resolve this issue, the new comprehensive logging functionality has been added to enable AWS WAF to acquire all detection logs.
| Current | Retention period of the sample log is up to 3 hours |
| During the retention period, it is not possible to acquire all detection logs, and only some of the detection logs can be accessed. |
| New | With the new comprehensive logging functionality, AWS WAF supports full logging of all web requests inspected by the service. Due to this, all detection log acquired by AWS WAF can be accessed. |
Users can store these logs in Amazon S3 for compliance and auditing needs as well as use them for debugging and additional forensics. The logs will help users understand why certain rules are triggered and why certain web requests are blocked. For each web request, AWS WAF logs provide raw HTTP/S headers along with information on which AWS WAF rules are triggered. This is useful for troubleshooting custom WAF rules and Managed Rules for AWS WAF.
■ New features
1. Notification Function
WafCharm automatically sends E-mail notifications of the detected content to the administrator immediately. Due to this, WafCharm users will be able to grasp the blocking status and details of an attack immediately. (The conventional way to check the blocking status is by accessing the detection history on AWS console.)
※ In the future, CSC plans to further update this function by adding SNS notification, etc.
Notification Email
※ The image is just an example. Specifications are subject to change without notice.
2. Monthly Reporting Function
WafCharm will generate a monthly report of the detection status per WafCharm account or per Web ACL. The monthly report includes total no. of detections, attackers’ IP addresses, ranking of attack type, source and country.
Monthly Report
※ The image is just an example. Specifications are subject to change without notice.
■ About WafCharm
WafCharm is a service for automation of AWS WAF operations using AI & Big Data. Based on user’s system configuration and access status, WafCharm uses AI to automatically identify and apply the most optimum signatures, based on hundreds of billions of Big Data cultivated through in-house developed cloud based WAF “Shadankun”, which has No.1 adoption rate in Japan. *1
In July 2018, CSC acquired a patent related to signature selection process of WAF, and by offering 24/7 technical support *2 & individual customization by top-class security engineers with flexible services tailored to the needs of customers, WafCharm has made AWS WAF operations easier for users.
For more information, please visit WafCharm.
※ Company names and product names listed are trademarks and registered trademarks of their respective owners.
*1: Market research on “cloud based WAF service” [Investigated by ESP Research Institute (August 2017)]
*2: Depends on selected plan.
AWS WAF is a Web Application Firewall provided by Amazon Web Services that helps protect web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. With AWS WAF, you can control which traffic to allow or block to the web applications by specifying customizable web security rules.
■ About Cyber Security Cloud, Inc.
A global Web Application Security Company, with services implemented in over 5000 systems. With an aim to create a secure cyber space that people around the world can use safely, CSC consistently offer high quality in-house development, operation, maintenance, sales and support of web security services. Their services include a cloud-based Web Application Firewall “Shadankun”, a service for auto-optimization of AWS WAF operations using AI & Big Data “WafCharm” and a set of Managed Rules for AWS WAF “Cyber Security Cloud Managed Rules for AWS WAF -HighSecurity OWASP Set-”.
In 2018, CSC was ranked 10th fastest growing technology company in Japan on "Deloitte Technology Fast 50" list, as well as 150th place on the "Deloitte Asia Pacific Technology Fast 500" list, with revenue (sales) growth of 495.72% based on the past three accounting periods and is recognized as one of the top growing security companies in the Asia Pacific region.
For more information, please visit WafCharm.
For any media & PR related inquiries, please contact us.