Shield¶
Overview¶
AWS Shield is a managed Distributed Denial of Service (DDoS) protection service designed to safeguard web applications running on AWS infrastructure.
Protection Levels¶
- AWS Shield Standard:
- Automatic protection for all AWS customers
- Free service for AWS resources
-
Protects against common DDoS attacks
-
AWS Shield Advanced:
- Paid service with comprehensive protection
- Detailed attack diagnostics
- Custom incident response team
Supported Resources¶
- Amazon CloudFront distributions
- Amazon Route 53 hosted zones
- Elastic Load Balancers
- AWS Global Accelerator
- Amazon EC2 instances
Key Features¶
- Real-time attack detection
- Traffic filtering
- Automatic traffic rate limiting
- Layer ¾ and Layer 7 protection
- Comprehensive threat mitigation
Attack Types Mitigated¶
- SYN floods
- UDP reflection attacks
- HTTP/HTTPS floods
- Volumetric attacks
- Protocol attacks
- Application-layer attacks
Benefits¶
- Minimizes application downtime
- Reduces infrastructure vulnerability
- Scalable protection
- Seamless integration with AWS services
- Continuous monitoring and protection
Threat Detection Mechanisms¶
- Machine learning algorithms
- Behavioral analysis
- Traffic pattern recognition
- Anomaly detection