Overview
Product video
CloudGuard WAF is an automated solution that delivers superior benefits of a top-tier Web Application Firewall with API Protection, requiring minimal manual intervention. The AI engine continuously learns the behavior of your application, tracking changes throughout its lifecycle. This ensures a minimal false positive rate and reduces tedious rule tuning after each application change.
CloudGuard WAF-as-a-Service delivers a non-agent WAF that can be deployed in less than 15 minutes. Traffic is effortlessly routed through Check Point servers, which automatically issue SSL certificates. Upon redirection, any HTTP requests are intercepted for inspection and forwarded to the application only after validating their security.
CloudGuard WAF-as-a-Service supports is available in advanced and premium tier packages.
The advanced package provides:
- AI-based engines for zero-day prevention
- Intrusion prevention signatures to block OWASP Top 10 known attacks
- AI-based contextual analysis engine to ensure precise detection rate with minimal
false positives - Advanced DDoS mitigation to ensure your applications stay accessible to legitimate users by mitigating attacks that overwhelm your network, servers, or applications
- Rate limiting based on identifiers such as IP address and XFF (limited to 5 rules)
- Intrusion Prevention (IPS), over 2,800 Web CVEs, based on award-winning NSS- Certified IPS
- Bot prevention
- Snort 3.0 signature enforcement engine
The premium package includes all advanced package features, and adds:
- Real-time API discovery, sensitive data, and public exposure governance
- Auto-generated swagger schema for validation and schema enforcement
- Unlimited rate limiting
- Rate limiting functionality adds identifiers such as keys within JWT, cookies, or headers
- Zero-day file security
Highlights
- Zero-day prevention: CloudGuard WAF has demonstrated prevention of zero-day exploits across a wide spectrum of security issues, including log4shell, text4shell, and MOVEit, all in real-time
- Deployed within minutes: CloudGuard WAF-as-a-Service delivers a non-agent Web application Firewall, deployable within minutes. Only a one-time DNS configuration is necessary for CloudGuard to start routing traffic securely to applications in the cloud.
- Prevent DDoS and automated attacks: CloudGuard WAF-as-a-Service provides real-time detection and automatic mitigation protection against Distributed Denial of Service (DDoS) attacks and bot-driven assaults
Details
Features and programs
Financing for AWS Marketplace purchases
Pricing
Dimension | Description | Cost/month |
---|---|---|
SaaS Premium - Up to 10M Req / Month | CloudGuard WAF-as-a-Service Premium | $1,800.00 |
SaaS Premium - Up to 20M Req / Month | CloudGuard WAF-as-a-Service Premium | $2,240.00 |
SaaS Premium - Up to 30M Req / Month | CloudGuard WAF-as-a-Service Premium | $2,680.00 |
SaaS Premium - Up to 40 Req / Month | CloudGuard WAF-as-a-Service Premium | $3,120.00 |
SaaS Advanced - Up to 10M Req / Month | CloudGuard WAF-as-a-Service Advanced | $1,500.00 |
SaaS Advanced - Up to 20M Req / Month | CloudGuard WAF-as-a-Service Advanced | $1,880.00 |
SaaS Advanced - Up to 30M Req / Month | CloudGuard WAF-as-a-Service Advanced | $2,260.00 |
SaaS Advanced - Up to 40M Req / Month | CloudGuard WAF-as-a-Service Advanced | $2,640.00 |
Additional pricing options: Custom sizing Req / Month | CloudGuard WAF-as-a-Service: Custom sizing | $100,000.00 |
Vendor refund policy
No Refunds
Custom pricing options
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
This offer includes Premium Support. For the full list of included support services visit: https://www.checkpoint.com/support-services/support-plans/ To open a support ticket, you would need to have a Check Point user center account. If you do not have a user center account, you can sign up for one here: https://accounts.checkpoint.com . Need support? Contact us at
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.