Cyber Security Cloud, Inc. (Headquarters: Tokyo, Japan, President/CEO: Hikaru Ohno) announced today that its service for automation of AWS WAF operations "WafCharm" has been updated to correspond to the latest update announced by AWS on November 25, 2019. As a result, it is possible to further strengthen the defense of web applications in the AWS environment, and advanced security measures can be provided.

■ About AWS WAF
AWS WAF is a Web Application Firewall provided by Amazon Web Services (AWS) that helps protect web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. With AWS WAF, users can control which traffic to allow or block to the web applications by specifying customizable web security rules.

On November 25, 2019, the AWS WAF was updated significantly to the new AWS WAF. *1
This introduced the WAF capacity unit (WCU), which lifted the limit of using only up to 10 rules and made it possible for more rules to be added. Also, the introduction of the "or" operator has facilitated the creation of rules for various detection patterns and has been updated to a WAF that is more user-friendly.

■ About WafCharm's support for new AWS WAF
Cyber Security Cloud's service for automation of AWS WAF operations "WafCharm" has been updated to correspond to the latest update of AWS WAF by AWS.

In addition to WafCharm, Cyber Security Cloud also provides a cloud-based WAF "Shadankun", ranking No. 1 *2 in Japan in terms of adoption rate, as well as "Managed Rules for AWS WAF", which is available to subscribe on AWS Marketplace to over 1 million AWS users in over 190 countries.

With the updated AWS WAF, it is now possible to create more than just 10 rules, and with the knowledge of creating rules that optimize the protection range and consumption balance of WCU in AWS WAF, as well as the finetuning method during a false-positive that we possess, it has resulted in an improved defensive performance of WafCharm, making it possible to automatically operate optimized rules with a good balance of consumption of rules.

At the same time, it supports rate-based rules when the amount of access exceeds a certain threshold and rules that allow or block access by specifying a country, providing more flexible services.

As a result, WafCharm users will be freed from web application security measures in the AWS environment and will be able to focus on their core business.

■ About WafCharm
WafCharm is a service for automation of AWS WAF operations using AI & Big Data. It is equipped with an AI engine "WRAO" (Patent No. 6375047) that automatically selects the most optimal WAF rules using machine learning, based on hundreds of billions of Big Data cultivated through in-house developed cloud-based WAF “Shadankun”, which has No.1 adoption rate in Japan. *2
The cyber threat information monitoring team of security researchers "Cyhorus" responds quickly to the latest threats, and by offering 24/7 technical support *3 & individual customization by top-class security engineers with flexible services tailored to the needs of customers, WafCharm has made AWS WAF operations easier for users. It is available to over 1 million AWS users in over 190 countries.

■ About Cyber Security Cloud
With an aim to create a secure cyberspace that people around the world can use safely, Cyber Security Cloud provides web application security services worldwide using the world's leading cyber threat intelligence and AI technology. CSC is also certified as the 7th AWS WAF Managed Rules Seller in the world by AWS (Amazon Web Service) which boasts a 47.8% global cloud market share. *4

As a leading cybersecurity company, CSC plans to continue to strive to improve and develop new technologies and aim to be a company that can deliver effective security solutions to contribute to the information revolution.

* The company names and service names described in this release are registered trademarks of the respective companies.
* Amazon Web Services and AWS are trademarks of Amazon.com, Inc. or its affiliates in the United States and other countries.

*1: Please refer to the following blog for more details on the AWS WAF update.
https://aws.amazon.com/jp/blogs/aws/announcing-aws-managed-rules-for-aws-waf/
*2: Market research on “cloud-based WAF service” [Investigated by ESP Research Institute (June 2019)]
*3: Depends on the selected plan.
*4：Gartner(July 2019)･･･Worldwide Iaas Public Cloud Services Market Share, 2017-2018(Millions of U.S. Dollars)

For any media & PR related inquiries, please contact us.