AWS waf documentation change
Summary
Added console notice, updated terminology to include 'protection pack', and maintained references to JA3/JA4 fingerprint security features
Security assessment
While JA3/JA4 fingerprinting is a security feature, the changes only expand existing documentation to include 'protection pack' terminology rather than introducing new security capabilities. No vulnerabilities or security improvements are addressed.
Diff
diff --git a/waf/latest/developerguide/logging-fields.md b/waf/latest/developerguide/logging-fields.md index 86b475eef..b6da9c3f7 100644 --- a//waf/latest/developerguide/logging-fields.md +++ b//waf/latest/developerguide/logging-fields.md @@ -5 +5,5 @@ -# Log fields for web ACL traffic +**Introducing a new console experience for AWS WAF** + +You can now use the updated experience to access AWS WAF functionality anywhere in the console. For more details, see [Working with the updated console experience](./working-with-console.html). + +# Log fields for protection pack or web ACL traffic @@ -29 +33 @@ The CAPTCHA action terminates web request inspection when the request either doe -The identifier for the CloudFront distribution tenant associated with the web request. This field is optional and only applies to web ACLs associated with CloudFront distribution tenants. +The identifier for the CloudFront distribution tenant associated with the web request. This field is optional and only applies to protection pack or web ACLs associated with CloudFront distribution tenants. @@ -138 +142 @@ The JA3 fingerprint is a 32-character hash derived from the TLS Client Hello of -You provide this value when you configure a JA3 fingerprint match in your web ACL rules. For information about creating a match against the JA3 fingerprint, see [JA3 fingerprint](./waf-rule-statement-fields-list.html#waf-rule-statement-request-component-ja3-fingerprint) in the [Request components in AWS WAF](./waf-rule-statement-fields-list.html) for a rule statement. +You provide this value when you configure a JA3 fingerprint match in your protection pack or web ACL rules. For information about creating a match against the JA3 fingerprint, see [JA3 fingerprint](./waf-rule-statement-fields-list.html#waf-rule-statement-request-component-ja3-fingerprint) in the [Request components in AWS WAF](./waf-rule-statement-fields-list.html) for a rule statement. @@ -151 +155 @@ The JA4 fingerprint is a 36-character hash derived from the TLS Client Hello of -You provide this value when you configure a JA4 fingerprint match in your web ACL rules. For information about creating a match against the JA4 fingerprint, see [JA4 fingerprint](./waf-rule-statement-fields-list.html#waf-rule-statement-request-component-ja4-fingerprint) in the [Request components in AWS WAF](./waf-rule-statement-fields-list.html) for a rule statement. +You provide this value when you configure a JA4 fingerprint match in your protection pack or web ACL rules. For information about creating a match against the JA4 fingerprint, see [JA4 fingerprint](./waf-rule-statement-fields-list.html#waf-rule-statement-request-component-ja4-fingerprint) in the [Request components in AWS WAF](./waf-rule-statement-fields-list.html) for a rule statement. @@ -183 +187 @@ Any additional information provided for each rule varies according factors such -The list of fields in the web request that were inspected by the web ACL and that are over the AWS WAF inspection limit. If a field is oversize but the web ACL doesn't inspect it, it won't be listed here. +The list of fields in the web request that were inspected by the protection pack or web ACL and that are over the AWS WAF inspection limit. If a field is oversize but the protection pack or web ACL doesn't inspect it, it won't be listed here. @@ -309 +313 @@ The part of a URL that follows the "#" symbol, providing additional information -The GUID of the web ACL. +The GUID of the protection pack or web ACL. @@ -317 +321 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please -Finding your web ACL records +Finding your protection pack or web ACL records