AWS Shield

It is a distributed denial-of-service (DDoS) protection service that protects applications running on AWS. It provides automatic inline mitigation and always-on detection that minimizes application downtime and latency.

Rapid detection
AWS Shield Standard provides continuously operational network flow monitoring that inspects incoming traffic in AWS and other analytics techniques to detect malicious traffic in real time.

Inline Attack Mitigation
AWS Shield Standard has built-in automated mitigation techniques, providing protection against the most common attacks that occur. It uses various techniques, such as packet filtering and priority-based traffic configuration, to automatically mitigate attacks without impacting applications.

AWS Shield AdvancedEnhanced Detection
It provides enhanced detection by inspecting network flows of traffic directed to your resources. Using additional techniques, such as resource-specific monitoring, AWS also provides granular detection of DDoS attacks specific to resources and regions.

Advanced Attack Mitigation
It offers a more sophisticated level of automatic mitigation for attacks targeting applications running on EC2, ELB, Amazon CloudFront, AWS Global Accelerator, and Amazon Route 53 protected resources.

Attack visibility and notification
AWS Shield Advanced gives you complete visibility into DDoS attacks with near real-time notification and detailed diagnostics in the management console. You can also view a summary of previous attacks in the AWS WAF and AWS Shield Management Console.

Source: https://aws.amazon.com/es/?nc2=h_lg
At Itera we can help you.
Contact a specialist: seguridad@iteraprocess.com