Home icon

AWS WAF adds JA4 fingerprinting and aggregation on JA3 and JA4 fingerprints for rate-based rules

News

AWS WAF has introduced new features for improved client request identification and protection:

  • Added JA4 TLS client fingerprinting for incoming requests
  • Enables blocking malicious clients and allowing known clients
  • Supports using JA4 and JA3 fingerprints as aggregation keys in rate-based rules
  • JA4 fingerprint is a 36-character representation of TLS Client Hello
  • Available for Amazon CloudFront and Application Load Balancer
  • No additional cost, standard AWS WAF pricing applies

These features enhance the ability to identify and mitigate sophisticated attacks by creating more precise rules based on client behavior patterns.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Related articles

Feb 18
2025
AWS WAF enhances Data Protection and logging experience
Feb 24
2025
AWS WAF enhances integration with Service Quotas
Mar 18
2025
AWS WAF now supports URI fragment field matching
Aug 30
2024
AWS WAF enhances rate-based rules to support lower rate limits

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.