Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Cloudflare WAF has a layered security approach using multiple layers of detection and mitigation, including Custom Rules, Managed Rules, Machine Learning, Leaked Credential Check, Sensitive Data Detection (SDD), Rate Limiting, etc. This demo highlights Cloudflare's layered security defense while mitigating an attack.

Cloudflare applies a layered detection approach to Bot Management with several detection engines that cumulatively impact the bot score. Bot scores can be used in WAF rules to create granular security policies. This demo highlights how Cloudflare can help with several use cases including web scraping, account takeover, and AI bot protection. Additionally, Cloudflare's AI Assistant, Cloudy, is used to review additional bot analytics and create a WAF rule based on bot score and additional criteria.

Cloudflare API Shield provides many capabilities across API discovery & management, posture management, and runtime protection. This demo highlights some of these capabilities including machine learning discovery, sequence analysis and mitigation, schema learning, schema validation, volumetric abuse protection, organizational / user-created labels, risk labels, sensitive data detection, and posture management.

Cloudflare DDoS Web Protection provides automatic, intelligent DDoS mitigation from the edge of Cloudflare's global network — mitigating most attacks in three seconds. Advanced Adaptive DDoS Protection learns your unique traffic patterns and adapts to them to provide better protection against sophisticated DDoS attacks. Learn more.

This episode is all about our first innovation week of the year, Security Week. Host João Tomé (based in Lisbon, Portugal) is joined by Alex Dunbrack and Adam Martinetti, both Senior Product Managers at Cloudflare, based in the San Francisco area.