Case Study

Web Application Firewall (WAF)

The need to protect information drives Flisk to implement a Web Application Firewall (WAF). The goal is to remain a leading platform to save customers time and premiums during insurance renewals.

DETAILS

Name Company: Flisk

Flisk | Insurance Renewals Made Easy

Starting Point: The Danger of Today’s Cyber-Attacks

Cyber-attacks have advanced in recent years, becoming serious problems for organizations. Firewalls and intrusion prevention systems alone are no longer sufficient. Now, a robust solution is needed for websites and public internet sites. With this in mind, we have implemented a Web Application Firewall for FLISK.

Solution: Deploy Web Application Firewall (WAF)

This solution is a type of firewall that monitors, filters or blocks HTTP traffic to and from a web application. It differs from a normal firewall in that it can filter the content of specific web applications, while a network firewall protects traffic between servers. With this project we can protect Flisk applications at a granular level by automatically learning about them.

The deployment of the Web Application Firewall provides, firstly, an answer to the security needs of networks and services exposed to the Internet. Secondly, it directly protects high-value applications and assets in virtual and physical data centers. Finally, it also continuously adapts to evolving threats and mitigates security risks.

Key Objective: Secure the Platform in an Integrated Manner

The key objective of the project is to secure Flisk’s web platform. Since websites are the gateway to an organization’s most valuable assets, they become the target of hackers and malicious attacks. Therefore, the goal is to protect the information by adding an additional layer of security that provides automated protection against technically complex and large-scale attacks.

Advantages Obtained From WAF

Web attack mitigation and automatic policy generation in real time.

Immediate response to attacks, without blocking legitimate user traffic during the attack.

Updating of web defenses with research information on current vulnerabilities.

Virtual patching of application vulnerabilities to reduce exposure.

Implementing the WAF, Flisk has kept cyber attackers away from the main external access to databases and web servers. Neutralize attacks, information theft, fraud, mitigate risk and streamline compliance with a fast and effective solution.

Tools and Services Used in the Development of the Project

      • Elastic Beanstalk to deploy and scale the web application.
      • Aurora DB to manage the relational database.
      • Amazon Route 53 to effectively connect user requests to the infrastructure running on AWS.
      • Amazon S3 to provide scalable object storage through a web service interface.
      • Amazon CloudFront as a content delivery network that provides the Flisk platform with improved access speed.

Achievements

      • WAF Ensure Access
        Ensured access to the platform for maintenance.
      • WAF Disaster Recovery
        Implemented a replication system for disaster recovery.

Amazing job! The Cloud Levante team designed and implemented the architecture for my project very well using Elastic Beanstalk, Aurora DB, Route53, S3 and CloudFront. He knows many services within AWS. In addition, he is available to help me 24/7 with all my questions. I highly recommend this trusted partner.

Pablo Ninoles

CEO, FLISK

request proof of concept

Shall we talk?

Contact us and find out how technology helps people who want to boost their business.

Office

Alicante Science Park (UA campus extension)                 Alicante, 03005, Spain