Blogs > HUAWEI CLOUD Web Application Firewall (WAF): Using AI to Defend Against CC Attacks

HUAWEI CLOUD Web Application Firewall (WAF): Using AI to Defend Against CC Attacks

HUAWEI CLOUD Jun 01, 2021
Share
HUAWEI CLOUD recently launched the Application Acceleration and Protection Package, providing you with a discount package of the professional version of WAF + CDN 1T. Our Application Acceleration and Protection Package are the ideal choice for e-commerce, video, live broadcast, gaming and other scenarios with high demand for application acceleration and web security; You may enjoy a 71% discount, only $180USD monthly to have the full safeguard of our professional level security service.
 

As more and more companies are moving their applications and workloads to the cloud, cyber security is becoming an even more of a pressing concern. Challenge Collapsar (CC) attacks are a common type of cyberattack that is easy to launch. Launching a CC attack requires almost no professional knowledge, but can potentially cause severe damage.

 

CC attacks are a type of distributed denial of service (DDoS) attacks. With a CC attack, the attacker keeps sending seemingly legitimate HTTP requests to a target web server, so the target server exhausts its resources trying to resolve these requests. HUAWEI CLOUD's Web Application Firewall (WAF) uses AI technology to fend off CC attacks. Now let's see how HUAWEI CLOUD WAF helps you defend against CC attacks.

 

Challenges in fending off CC attacks

 

Complex defense policies: Security O&M personnel must pay close attention to any service changes and spend a lot of time and energy managing protection rules, including tracking recent vulnerabilities and adjusting the rules accordingly.

 

Many false alarms: Unfortunately, most of the times we find out about false alarms until we receive user feedback or complaints. It is important to strike a balance between maintaining the required security level and reducing potential false alarms to minimize interference.

 

Inefficient rule creation: Creating protection rules by manually analyzing traffic or by using a special tool is both time and energy-consuming. On the other hand, using the general protection rules without any customization leads to either many false alarms or failure to achieve the expected protection level.

 

Sluggish responses: If the response to CC attacks is not fast enough, losses may occur.

 

Conventionally, to avoid these hassles, you need to hire professionals to get the job done, but that would also drive up your costs.

 

 

 

Intelligent anti-CC provided by HUAWEI CLOUD WAF

 

The WAF service HUAWEI CLOUD launched in 2020 provides an intelligent anti-CC function. This function offers the following:

 

Online learning: Traces traffic changes and trends, models legitimate traffic, and evaluates the risk of false alarms.

 

Anomaly detection: Quickly detects anomalies in traffic, ensuring fast responses to online threats.

 

Automatic rule generation: Quickly generates protection rules in response to suspicious requests.

 

Attack behavior analysis: Extracts features from and models attack behavior, ensuring fast detection of attack traffic.

 

False alarm risk evaluation: Automatically evaluates the risk of false alarms before a defense policy is applied.

 

Automatic optimization: Automatically optimizes the defense model in an iterative manner based on past results of using intelligent anti-CC.

 

Sensitive and private data protection: Automatically avoids collecting sensitive or private user data.

 

 

 

Benefits of using HUAWEI CLOUD WAF intelligent anti-CC

 

Easy to use: No complex settings are required. Intelligent anti-CC can be enabled or disabled in one click.

 

No need for human intervention: CC attack detection and defense are both done automatically.

 

Visible protection rules: Users can see the data and logic behind the recommended protection rules so they have more confidence in the rules they choose to deploy.

 

Fast response: Protection rules against CC attacks take effect within seconds.

 

Self-optimization: In-depth analysis of false alarms and misses is performed, so the protection rules can be optimized automatically to improve accuracy.

 

Second-time confirmation: Users can set a confirmation process (for example, via verification code) for actions to block or throttle certain traffic, so as to avoid interrupting legitimate traffic.

 

Prompt response to unknown threats: Intelligent anti-CC is able to quickly detect new CC attack methods and patterns.

 

 

 

 

 

liver content to Internet users around world, both speedily and safely.

 

 

HUAWEI CLOUD Application Acceleration and Protection Package

 

HUAWEI CLOUD recently launched the Application Acceleration and Protection Package, providing you with a discount package of the professional version of WAF + CDN 1T. Our Application Acceleration and Protection Package are the ideal choice for e-commerce, video, live broadcast, gaming and other scenarios with high demand for application acceleration and web security; You may enjoy a 71% discount, only $180USD monthly to have the full safeguard of our professional level security service.
    HUAWEI CLOUD Professional WAF provides accurate threat monitoring to help enterprises in safety and compliance; the network bandwidth capacity for CDN is over than 100 Tbps.