2

As part of application security compliance we are supposed to implement an IPS on our application. The application is basically an educational web portal where students can enrol for course assessment. The assessment will be done in the backend by professionals and the certificate is issued to the students. This involves payment also. The application is hosted in Kubernetes in AWS cloud. 

We see that various levels of IPS are available in the market. Some includes threat intelligence models and SIEM modules. But for a small application like this, we don't think SIEM is not necessary. Also, taking into consideration that we are running short of budget, we would like to opt for a basic IPS that can effectively protect the web application. 

I would like to invite suggestions. I am not looking for a specific tool recommendation, but rather a way of implementation.

Anonymous Platypus
  • 1,392
  • 3
  • 18
  • 33
  • 1
    This is a confusing question. You want an IPS on the *application* or the server? What do you want to *control* or mitigate or prevent? What's your desired outcome? – schroeder Nov 03 '19 at 11:37
  • 1
    Implementing controls just to be compliant is not useful. What's the risk assessment? – schroeder Nov 03 '19 at 11:38
  • Are you looking for a *web application firewall* (WAF)? There are good WAFs, but it may be painful to add all the exception required by your use case, so don't expect having an out-of-the-box solution. – Esa Jokinen Nov 03 '19 at 13:04
  • 1
    I would start with reading 2019 "Amazon EKS: User Guide" by Amazon Web Services - "Security in Amazon EKS" this book is available for free: http://a.co/3wCsB5L – LLub Nov 03 '19 at 14:16
  • @schroeder My aim is to protect the application from common injection attacks as well as network level attacks such as fragmentation attacks. We have cloudflare in place, but I don't think it can prevent network level attacks. Though, I am not sure implementing an IPS make any difference to the level of security that I am getting. – Anonymous Platypus Nov 04 '19 at 06:45

0 Answers0