Edge WAF and DDoS protection
Kona Site Defender provides application security at the edge — closer to attackers and further from your applications. With 178 billion WAF rule triggers a day, Akamai harnesses unmatched visibility into attacks to deliver curated and highly accurate WAF protections that keep up with the latest threats. Flexible protections help secure your entire application footprint and respond to changing business requirements, including APIs and cloud migration, with dramatically lower management overhead.
Highest Accuracy With Less Effort
Kona Site Defender employs an adaptive security engine with proprietary risk scoring, adaptive threat detection, and self-tuning that is designed to scale with the sophistication of attacks–accurately and easily–while simultaneously reducing the effort needed to maintain strong protections. Dynamic security logic leverages threat intelligence, research, and machine learning to automatically adjust and precisely identify even the most stealthy attacks. The result is a stronger security posture that also reduces cost and complexity.
Protect Every App, Anywhere
Whether they’re deployed on-prem or across multiple cloud providers, whether they’re traditional websites or web APIs, or whether you have a single application or hundreds, Kona Site Defender helps you protect all of your applications and APIs with a single, easy-to-manage solution to maintain a consistent and up-to-date security posture — even as the applications and APIs you’re protecting continue to change.
Manage Your WAF, Your Way
You need application security that can be customized for your unique requirements and the organizations you support. Kona Site Defender provides you with total flexibility ― integrating into change control, automating protections, providing APIs and DevOps integration for your development toolchain, and offering managed services that offload security management, monitoring, and mitigation to Akamai experts 24/7.
Customizable and Automated Protection
Akamai’s Adaptive Security Engine provides both highly customizable and automated protection. Advanced anomaly scoring and self-tuning are designed to offer the highest accuracy in the most challenging environments and make it easier to extend security across your entire application estate without taxing resources.
Automatic API Discovery and Security
Automatically discover previously unidentified APIs – including API endpoints, characteristics, and definitions. This visibility enables security teams to easily stay on top of changing definitions or legacy APIs. Negative API security will then automatically inspect requests for threats, while a positive model allows only predefined APIs.
Zero-Second DDoS Mitigation SLA
Built on the Akamai Intelligent Edge Platform, Kona Site Defender is designed to protect your applications from the largest DDoS threats, instantly dropping network-layer DDoS attacks at the edge and responding to application-layer attacks within seconds.
Granular Attack Visibility and Reporting
Executive-level dashboards and in-depth security analytics provide different views into your security events. Integration with other security solutions and security information and event management (SIEM) provides a unified view of security posture.
IP Reputation (Optional)
With visibility into prior malicious behavior against other organizations, the optional Client Reputation service alerts you to traffic coming from known malicious clients, using a risk score in four different categories and tailored to your organization, so you can take appropriate action.
Managed Security Services (Optional)
If your organization doesn’t have the resources or expertise to manage your WAF, Akamai provides optional managed security services to augment your team, from regular configuration tuning to 24/7 monitoring and live attack response.