利用人工智能和即服务模式保护 Web 应用和 API（由 Check Point Software 赞助）.pdf

《利用人工智能和即服务模式保护 Web 应用和 API（由 Check Point Software 赞助）.pdf》由会员分享，可在线阅读，更多相关《利用人工智能和即服务模式保护 Web 应用和 API（由 Check Point Software 赞助）.pdf（28页珍藏版）》请在三个皮匠报告上搜索。

1、 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.S E C 2 1 0-SEduardo Redondo GarciaRolando PanezProtecting web apps&APIs with AI and an as-a-Servi

2、ce approach(he/him)Head of Cloud Security EngineeringCheck Point(he/him)Cloud Security ArchitectCheck Point 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.AI#1:Attack indicator analysisBlocking nearly 100%of threats including unmatched zero-daysAI#2:Context analysis enginesReduce

3、s false positives to nearly 0%Fully automated AI-based WAF management86%active deployment in prevent modeCloudGuard WAF eliminates manual rules and signature updates 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.88.6%Lowest false positives vs.other WAFsC L O U D G U A R D W A FU

4、nmatched prevention results99.4%0.8%8.7%Highest threat detection rate vs.other WAFsSource:WAF Comparison Project,2025 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Spring4ShellText4ShellLog4ShellMOVEitPreemptive prevention of top zero-day attacks in recent yearsC L O U D G U A R

5、 D W A F 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Comprehensive web application and API securityFile security Bot prevention API discovery HTTPApproved requestsTrained on millions of requests&attacksTrained continuously on apps&API behaviorIPSAI#2:Context analysisengines AI

6、#1:Attack indicatoranalysisRate limitDDoSC L O U D G U A R D W A F 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Reacting to zero-day attacksHTTPHow do WAFs with signatures/manual rules work?Relies on threat signature mappingManual rule updateApproved requestsThe average traditi