AWS Security ChangesHomeSearch

AWS waf documentation change

Service: waf · 2025-06-19 · Documentation low

File: waf/latest/developerguide/logging-fields.md

Summary

Added console notice, updated terminology to include 'protection pack', and maintained references to JA3/JA4 fingerprint security features

Security assessment

While JA3/JA4 fingerprinting is a security feature, the changes only expand existing documentation to include 'protection pack' terminology rather than introducing new security capabilities. No vulnerabilities or security improvements are addressed.

Diff

diff --git a/waf/latest/developerguide/logging-fields.md b/waf/latest/developerguide/logging-fields.md
index 86b475eef..b6da9c3f7 100644
--- a//waf/latest/developerguide/logging-fields.md
+++ b//waf/latest/developerguide/logging-fields.md
@@ -5 +5,5 @@
-# Log fields for web ACL traffic
+**Introducing a new console experience for AWS WAF**
+
+You can now use the updated experience to access AWS WAF functionality anywhere in the console. For more details, see [Working with the updated console experience](./working-with-console.html). 
+
+# Log fields for protection pack or web ACL traffic
@@ -29 +33 @@ The CAPTCHA action terminates web request inspection when the request either doe
-The identifier for the CloudFront distribution tenant associated with the web request. This field is optional and only applies to web ACLs associated with CloudFront distribution tenants.
+The identifier for the CloudFront distribution tenant associated with the web request. This field is optional and only applies to protection pack or web ACLs associated with CloudFront distribution tenants.
@@ -138 +142 @@ The JA3 fingerprint is a 32-character hash derived from the TLS Client Hello of
-You provide this value when you configure a JA3 fingerprint match in your web ACL rules. For information about creating a match against the JA3 fingerprint, see [JA3 fingerprint](./waf-rule-statement-fields-list.html#waf-rule-statement-request-component-ja3-fingerprint) in the [Request components in AWS WAF](./waf-rule-statement-fields-list.html) for a rule statement.
+You provide this value when you configure a JA3 fingerprint match in your protection pack or web ACL rules. For information about creating a match against the JA3 fingerprint, see [JA3 fingerprint](./waf-rule-statement-fields-list.html#waf-rule-statement-request-component-ja3-fingerprint) in the [Request components in AWS WAF](./waf-rule-statement-fields-list.html) for a rule statement.
@@ -151 +155 @@ The JA4 fingerprint is a 36-character hash derived from the TLS Client Hello of
-You provide this value when you configure a JA4 fingerprint match in your web ACL rules. For information about creating a match against the JA4 fingerprint, see [JA4 fingerprint](./waf-rule-statement-fields-list.html#waf-rule-statement-request-component-ja4-fingerprint) in the [Request components in AWS WAF](./waf-rule-statement-fields-list.html) for a rule statement.
+You provide this value when you configure a JA4 fingerprint match in your protection pack or web ACL rules. For information about creating a match against the JA4 fingerprint, see [JA4 fingerprint](./waf-rule-statement-fields-list.html#waf-rule-statement-request-component-ja4-fingerprint) in the [Request components in AWS WAF](./waf-rule-statement-fields-list.html) for a rule statement.
@@ -183 +187 @@ Any additional information provided for each rule varies according factors such
-The list of fields in the web request that were inspected by the web ACL and that are over the AWS WAF inspection limit. If a field is oversize but the web ACL doesn't inspect it, it won't be listed here. 
+The list of fields in the web request that were inspected by the protection pack or web ACL and that are over the AWS WAF inspection limit. If a field is oversize but the protection pack or web ACL doesn't inspect it, it won't be listed here. 
@@ -309 +313 @@ The part of a URL that follows the "#" symbol, providing additional information
-The GUID of the web ACL.
+The GUID of the protection pack or web ACL.
@@ -317 +321 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please
-Finding your web ACL records
+Finding your protection pack or web ACL records