Fastly and Signal Sciences have joined forces to transform the security landscape. We are on a mission to build the next generation of web application and API protection.Learn more
Fastly’s web application firewall protects your applications from malicious attacks designed to compromise web servers. Built on our powerful edge cloud platform, it protects against injection attacks, cross site scripting, HTTP protocol violations, and more. Our WAF is continuously updated to address ongoing threats using multiple rulesets. Rules can be configured in real time via our API, and can run in active blocking mode or passive logging mode only.
Fastly’s high-bandwidth, globally distributed network is built to absorb DDoS attacks. Our entire network acts as a DDoS scrubbing center, so you don’t sacrifice performance for protection. We protect against highly disruptive attacks across our infrastructure and through optimized software. We allow you to respond in real time, filtering malicious requests at the network edge before they get near your origin.
Fastly has partnered with DataDome, PerimeterX, and Shape Security (part of F5) to offer anti-automation and bot protection at the network edge. Fastly supports an open ecosystem that gives you the ability to select the tools and technologies that best meet your needs.
Protecting customer identities and the integrity of your website requires strong encryption. Fastly supports Transport Layer Security (TLS), the next-generation encryption and authentication protocol, to deliver a secure web experience for your users. TLS connections between Fastly and your origin are encrypted and terminated at our network edge, closer to your end users. We’re optimized to handle heavy volumes of encrypted traffic without impacting performance, providing you with a cost-effective solution that can scale as you grow.
Fastly is a certified PCI DSS Level 1 service provider. The power of our edge cloud platform and fine-grained controls allows us to cache sensitive PCI or HIPAA-related content while maintaining compliance. Legacy CDNs are unable to cache this content and can only route it on separate, sub-optimal networks. Our Assurance Services provide additional support for customers handling data subject to audit requirements.