Secure

    These articles provide information about Fastly products that deliver web application and API protection.

    DDoS Protection and Mitigation Service and SLA

    Fastly offers DDoS Protection and Mitigation Service to customers with a sustained DDoS threat risk or with short term and seasonal events to protect. While the DDoS Protection and Mitigation Service cannot prevent or eliminate attacks or guarantee the uptime of your origin servers, it offers the following resources to assist you with mitigating the service and financial impacts of DDoS and related attacks.

    Read more...
    HIPAA-Compliant Caching and Delivery

    You can configure the Fastly CDN service to cache and transmit protected health information (PHI) in keeping with Health Information Portability and Accountability Act (HIPAA) security requirements. Use the following features to ensure secure handling of cache data that contains PHI:

    Read more...
    PCI-Compliant Caching and Delivery

    We have designed Fastly's core CDN service with Payment Card Industry Data Security Standard (PCI DSS) compliance in mind. With proper authorization on your account, you can use Fastly's beresp.pci VCL variable to automatically cache content in a manner that satisfies PCI DSS requirements.

    Read more...
    WAF Quick Start Package

    Fastly’s WAF Quick Start Package provides your organization with basic setup and provisioning of your WAF by Fastly. For more information about this package, contact support@fastly.com.

    Read more...
    WAF Support and SLA

    IMPORTANT: No security product, such as a WAF or DDoS mitigation product, including those security services offered by Fastly, will detect or prevent all possible attacks or threats. As a subscriber, you should maintain appropriate security controls on all web applications and origins. The use of Fastly's security products do not relieve you of this obligation. As a subscriber, you should test and validate the effectiveness of Fastly's security services to the extent possible prior to deploying these services in production, continuously monitor their performance, and adjust these services as appropriate to address changes in your web applications, origin services, and configurations of the other aspects of your Fastly services.

    Read more...
    WAF Tuning Package

    Fastly’s WAF Tuning Package provides your organization with tuning of your WAF by Fastly. For more information about this package, contact support@fastly.com.

    Read more...
    WAF Tuning Plus Package

    Fastly’s WAF Tuning Plus Package provides your organization with enhanced professional maintenance of your WAF by Fastly. The WAF Tuning Plus Package also improves visibility into application layer threats and strengthens your overall security posture. The WAF Tuning Plus Package includes ongoing tuning and configuration services designed to help protect you against critical threats. To protect against WAF bypass attacks, it also includes authenticated TLS to origin.

    Read more...
    Web Application Firewall (WAF)

    The Fastly WAF is a Web Application Firewall (WAF) security product that detects malicious request traffic sent over HTTP and HTTPS. Once properly configured and enabled for a service, the Fastly WAF can help protect against application-layer (layer 7) attacks such as SQL injection, cross-site scripting, and HTTP protocol violations.

    Read more...
    Back to Top