AWS Shield | Responding to Attacks Flashcards

1
Q

How quickly are attacks mitigated?

Responding to Attacks

AWS Shield | Security, Identity & Compliance

A

Typically, 99% of infrastructure layer attacks detected by AWS Shield are mitigated in less than 1 second for attacks on Amazon CloudFront and Amazon Route 53, and less than 5 minutes for attacks on Elastic Load Balancing. The remaining 1% of infrastructure attacks are typically mitigated in under 20 minutes. Application layer attacks are mitigated by writing rules on AWS WAF, which are inspected and mitigated inline with incoming traffic.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What tools does AWS Shield Standard provide me to mitigate DDoS attacks?

Responding to Attacks

AWS Shield | Security, Identity & Compliance

A

AWS Shield Standard automatically protects your web applications running on AWS against the most common, frequently occurring DDoS attacks. You can get the full benefits of AWS Shield Standard by following the best practices of DDoS resiliency on AWS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What tools does AWS Shield Advanced provide me to mitigate DDoS attacks?

Responding to Attacks

AWS Shield | Security, Identity & Compliance

A

AWS Shield Advanced manages mitigation of layer 3 and layer 4 DDoS attacks. This means that your designated web applications are protected from attacks like UDP Floods, or TCP SYN floods. In addition, for application layer (layer 7) attacks, you can use AWS WAF to apply your own mitigations, or you can engage the 24X7 AWS DDoS Response Team (DRT), who can write rules on your behalf to mitigate Layer 7 DDoS attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

How can I contact the AWS DDoS Response Team?

Responding to Attacks

AWS Shield | Security, Identity & Compliance

A

You can engage the AWS DDoS Response Team (DRT) via regular AWS support, or contact AWS Support.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly