{"id":23255,"date":"2026-06-22T16:00:17","date_gmt":"2026-06-22T14:00:17","guid":{"rendered":"https:\/\/www.orbit.cz\/?post_type=encyklopedie-cloudu&#038;p=23255"},"modified":"2026-06-22T16:58:35","modified_gmt":"2026-06-22T14:58:35","slug":"33-aws-services-that-enable-you-to-secure-more-than-just-cloud-based-web-applications","status":"publish","type":"encyklopedie-cloudu","link":"https:\/\/www.orbit.cz\/en\/encyklopedie-cloudu\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\/","title":{"rendered":"3+3 AWS services to help you secure (not only) cloud-based web applications"},"content":{"rendered":"<style>.wp-block-kadence-column.kb-section-dir-horizontal > .kt-inside-inner-col > .kt-info-box23255_7d374b-81 .kt-blocks-info-box-link-wrap{max-width:unset;}.kt-info-box23255_7d374b-81 .kt-blocks-info-box-link-wrap{background:#ffffff;padding-top:var(--global-kb-spacing-xs, 1rem);padding-right:var(--global-kb-spacing-xs, 1rem);padding-bottom:var(--global-kb-spacing-xs, 1rem);padding-left:0px;}.kt-info-box23255_7d374b-81.wp-block-kadence-infobox{max-width:100%;}.kt-info-box23255_7d374b-81 .kadence-info-box-image-inner-intrisic-container .kadence-info-box-image-intrisic{padding-bottom:100%;max-width:100%;}.kt-info-box23255_7d374b-81 .kadence-info-box-icon-container .kt-info-svg-icon, .kt-info-box23255_7d374b-81 .kt-info-svg-icon-flip, .kt-info-box23255_7d374b-81 .kt-blocks-info-box-number{font-size:50px;}.kt-info-box23255_7d374b-81 .kt-blocks-info-box-media{border-radius:200px;overflow:hidden;border-top-width:0px;border-right-width:0px;border-bottom-width:0px;border-left-width:0px;padding-top:0px;padding-right:0px;padding-bottom:0px;padding-left:0px;margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px;}.kt-info-box23255_7d374b-81 .kt-infobox-textcontent p.kt-blocks-info-box-title{font-size:var(--global-kb-font-size-md, 1.25rem);padding-top:0px;padding-right:0px;padding-bottom:0px;padding-left:0px;margin-top:0px;margin-right:0px;margin-bottom:10px;margin-left:0px;}.kt-info-box23255_7d374b-81 .kt-blocks-info-box-learnmore{background:transparent;border-width:0px 0px 0px 0px;padding-top:4px;padding-right:8px;padding-bottom:4px;padding-left:8px;margin-top:10px;margin-right:0px;margin-bottom:10px;margin-left:0px;}<\/style>\n<div class=\"wp-block-kadence-infobox kt-info-box23255_7d374b-81 orbit-testimonial-second\"><span class=\"kt-blocks-info-box-link-wrap info-box-link kt-blocks-info-box-media-align-left kt-info-halign-left\"><div class=\"kt-blocks-info-box-media-container\"><div class=\"kt-blocks-info-box-media kt-info-media-animate-none\"><\/div><\/div><div class=\"kt-infobox-textcontent\"><p class=\"kt-blocks-info-box-title\">Web application security today does not mean a single firewall, but a combination of multiple layers \u2013 from DDoS protection through a Web Application Firewall to the security role of a CDN. In this article, I show how to combine these layers effectively so that security functions as a cohesive whole and the application can withstand any potential attack.<\/p><p class=\"kt-blocks-info-box-text\"><strong>Martin Gavanda<\/strong><\/p><\/div><\/span><\/div>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"536\" src=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206-1-1-1024x536.jpg\" alt=\"Web Application Security in Practice: 3+3 AWS Security Services | ORBIT Cloud Encyclopaedia\" class=\"wp-image-23263\" style=\"aspect-ratio:1.9104774329823253;width:635px;height:auto\" srcset=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206-1-1-1024x536.jpg 1024w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206-1-1-300x157.jpg 300w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206-1-1-768x402.jpg 768w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206-1-1-18x9.jpg 18w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206-1-1.jpg 1200w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div>\n\n\n<h2 class=\"wp-block-heading\">Why web application security is a crucial issue today<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">It probably won\u2019t come as a surprise to you that <strong>Web applications are among the most vulnerable<\/strong> across your entire application portfolio. They are usually accessible to anyone, and so anyone has the opportunity to try to \u201ehack\u201c into them.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">You might think that this couldn\u2019t happen to you, or that such attacks only affect large companies. However, the data and statistics speak for themselves:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>56 %<\/strong> The organisation came under attack.<\/li>\n\n\n\n<li>The increase compared with the previous year is greater than <strong>50 %<\/strong>.<\/li>\n\n\n\n<li><strong>Two-thirds<\/strong> The attacks were directed at smaller companies.<\/li>\n\n\n\n<li>For <strong>30 % <\/strong>attacks may be carried out by third parties (typically out-of-date libraries).<\/li>\n<\/ul>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"935\" height=\"473\" src=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-2.png\" alt=\"Web Application Security Report 2025 | ORBIT Cloud Encyclopaedia\" class=\"wp-image-23259\" style=\"width:547px;height:auto\" srcset=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-2.png 935w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-2-300x152.png 300w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-2-768x389.png 768w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-2-18x9.png 18w\" sizes=\"auto, (max-width: 935px) 100vw, 935px\" \/><figcaption class=\"wp-element-caption\"><em>Web Application Security Report 2025 (source: <\/em><a href=\"https:\/\/www.cybersecurity-insiders.com\/web-application-security-report-2025-application-breaches-on-the-rise\/\" target=\"_blank\" rel=\"noreferrer noopener\"><em>https:\/\/www.cybersecurity-insiders.com\/web-application-security-report-2025-application-breaches-on-the-rise\/<\/em><\/a><em>)<\/em><\/figcaption><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\">So how can we protect ourselves?<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you\u2019re looking for a single, specific solution, you\u2019ll be disappointed. To ensure your web application is secure, you need to focus not only on its <strong>infrastructure<\/strong>, but also on the whole <strong>development cycle<\/strong> applications, from development through to testing, deployment and operation.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In this article, we will focus mainly on Amazon Web Services infrastructure and services, but similar services are, of course, also available in the Azure environment and&nbsp;<span style=\"text-decoration: underline;\"><a href=\"https:\/\/www.linkedin.com\/in\/prochazkajakub\/\" target=\"_blank\" rel=\"noreferrer noopener\">Jakub Proch\u00e1zka<\/a><\/span> He\u2019ll be happy to introduce them to you if you\u2019re interested.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">What does web application security actually involve in practice?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">In practice, web application security is not limited to the code level, but also extends to the infrastructure surrounding the application.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This time, we won\u2019t be looking in detail at the architecture of a specific application. Instead, we\u2019ll take a look at <strong>services that should be deployed before the application itself<\/strong> and which should provide her with an additional layer of security.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We usually recommend that customers implement three key services <strong>to protect the web application itself<\/strong>:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>DDoS protection for filtering out unwanted traffic,<\/li>\n\n\n\n<li><span style=\"text-decoration: underline;\"><a href=\"https:\/\/aws.amazon.com\/waf\/\" target=\"_blank\" rel=\"noreferrer noopener\">Web Application Firewall (WAF)<\/a><\/span> for comprehensive protection on the seventh layer,<\/li>\n\n\n\n<li><span style=\"text-decoration: underline;\"><a href=\"https:\/\/aws.amazon.com\/cloudfront\/\" target=\"_blank\" rel=\"noreferrer noopener\">Content Delivery Network (CDN)<\/a><\/span> to enhance the user experience and provide protection at the network perimeter.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">We therefore recommend a package of services for <strong>security monitoring<\/strong>, which cover the following areas:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"text-decoration: underline;\"><a href=\"https:\/\/aws.amazon.com\/detective\/\" target=\"_blank\" rel=\"noreferrer noopener\">analysis<\/a><\/span> potential security threats and their investigation,<\/li>\n\n\n\n<li><span style=\"text-decoration: underline;\"><a href=\"https:\/\/aws.amazon.com\/security-hub\/\" target=\"_blank\" rel=\"noreferrer noopener\">cloud security posture management<\/a><\/span> to identify existing vulnerabilities in the infrastructure,<\/li>\n\n\n\n<li><span style=\"text-decoration: underline;\"><a href=\"https:\/\/aws.amazon.com\/guardduty\/\" target=\"_blank\" rel=\"noreferrer noopener\">threat detection<\/a><\/span> and unauthorised access,<\/li>\n\n\n\n<li><span style=\"text-decoration: underline;\"><a href=\"https:\/\/aws.amazon.com\/inspector\" target=\"_blank\" rel=\"noreferrer noopener\">vulnerability scanning<\/a><\/span> in the deployed infrastructure.<\/li>\n<\/ul>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"859\" height=\"575\" src=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image.jpg\" alt=\"Key services providing web application protection and security monitoring | ORBIT Cloud Encyclopaedia\" class=\"wp-image-23256\" style=\"aspect-ratio:1.493952588292211;width:503px;height:auto\" srcset=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image.jpg 859w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-300x201.jpg 300w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-768x514.jpg 768w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-18x12.jpg 18w\" sizes=\"auto, (max-width: 859px) 100vw, 859px\" \/><figcaption class=\"wp-element-caption\"><em>Key services providing web application protection and security monitoring<\/em><\/figcaption><\/figure>\n<\/div>\n\n\n<h2 class=\"wp-block-heading\">Protecting web applications against DDoS attacks<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">DDoS attacks are among the most common threats to the availability of web applications. Their aim is to overload the infrastructure with traffic, not to exploit an application vulnerability.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><em>AWS Shield<\/em> <strong>protects web applications<\/strong> by automatically blocking DDoS attacks \u2013 completely autonomously, free of charge and without the infrastructure owner having to take any action. <em>AWS Shield<\/em> It is available in two versions:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Shield Standard (free)<\/li>\n\n\n\n<li>Shield Advanced (paid feature)<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Shield Standard<\/strong> It will provide you with protection against attacks at the third and fourth layers, typically various flood attacks. However, it is not sufficient to protect against application-layer attacks at the seventh layer.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Or rather \u2013 a Web Application Firewall will provide you with this protection (if configured correctly!), but if you\u2019re looking for a completely standalone solution, then <strong>Shield Advanced<\/strong> an excellent choice that offers the following features:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Automatic creation of Web Application Firewall rules<\/strong><br>Shield Advanced can automatically generate WAF rules in response to a detected attack \u2013 without the need for manual intervention. The system recognises the attack and begins blocking malicious traffic on its own.<\/li>\n\n\n\n<li><strong>Financial protection<\/strong><br>If an attack causes AWS resources (EC2, CloudFront, Application Load Balancer, etc.) to scale, AWS will reimburse you for the costs incurred in the form of credits.<\/li>\n\n\n\n<li><strong>Incident Response<\/strong><br>You\u2019ll have access to a team of AWS security specialists 24\/7. During an active attack, they\u2019ll help you with mitigation, rule customisation and analysis.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">One drawback of Shield Advanced may be its price, which is set at a fixed rate of 3,000 $ per year. On the other hand, this service protects <strong>all applications running in that AWS account<\/strong>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Web Application Firewall (WAF) as a key layer of protection<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Application-layer attacks target the logic of the web application and its inputs directly, and this is precisely where the Web Application Firewall plays a key role.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">I strongly recommend implementing this key component <strong>before any (not just public!) web application<\/strong>.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"942\" height=\"290\" src=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-1.png\" alt=\"AWS Web Application Firewall | ORBIT Cloud Encyclopaedia\" class=\"wp-image-23258\" style=\"width:642px;height:auto\" srcset=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-1.png 942w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-1-300x92.png 300w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-1-768x236.png 768w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-1-18x6.png 18w\" sizes=\"auto, (max-width: 942px) 100vw, 942px\" \/><figcaption class=\"wp-element-caption\"><em>A Web Application Firewall provides web applications with an additional layer of protection.<\/em><\/figcaption><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><em>Web Application Firewall<\/em> \u201esees\u201c into the operations on the seventh layer and enables <strong>monitor the entire content of HTTP\/HTTPS communications<\/strong>. This enables it to effectively block a wide range of application-based attacks before they even reach the application itself, for example:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>SQL Injection<\/strong>&nbsp;<br>An attacker injects parameters into forms or URLs <strong>malicious SQL code<\/strong> (such as<a> <\/a><code>' OR 1=1 --<\/code>) with the aim of manipulating database queries. The WAF recognises these patterns and blocks the request before any interaction with the database takes place.<\/li>\n\n\n\n<li><strong>Cross-Site Scripting (XSS)<\/strong><br>The attacker inserts <strong>malicious JavaScript<\/strong> (or HTML code) into the input fields, so that it can then be executed in another user\u2019s browser. The WAF filters out dangerous content in the inputs and prevents it from being executed.<\/li>\n\n\n\n<li><strong>HTTP Flood and bot attacks<\/strong><br>An attacker or a botnet <strong>generates a large number of requests<\/strong> to specific endpoints, such as login forms or APIs. The WAF can limit the number of requests from a single IP address or session (known as rate limiting).<\/li>\n\n\n\n<li><strong>Path Traversal<\/strong><br>The attacker is trying to <strong>access files outside the webroot<\/strong> using specially formatted URL paths (e.g. <code>..\/..\/etc\/passwd<\/code>). The WAF detects these requests and blocks them.<\/li>\n\n\n\n<li><strong>Malformed requests<\/strong><br>Forward <strong>sends invalid or non-standard requests<\/strong>, often with the aim of bypassing security checks or testing the behaviour of an application. The WAF filters these requests based on headers, methods or user-agents.<\/li>\n\n\n\n<li><strong>OWASP Top 10<\/strong><br>AWS WAF includes managed rule groups that directly cover the entire OWASP Top 10 \u2013 that is, the most common categories of web vulnerabilities.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">A content delivery network as the first line of defence<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Content delivery network (CDN)<\/strong> It\u2019s not just about performance \u2013 from a security perspective, it\u2019s the first point of contact between the user and the application.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">You might be thinking that <em>CloudFront<\/em> After all, as a content delivery network, it primarily distributes content via a global network of edge locations closer to users. That is the tool\u2019s main role. But from a security perspective <strong>CloudFront is the first line of defence<\/strong> \u2014 all traffic passes through the AWS infrastructure before it even reaches your web application.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Put simply, an attacker never communicates directly with your application. They communicate with CloudFront, and all filtering takes place at that level.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"901\" height=\"578\" src=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image.png\" alt=\"AWS CloudFront | ORBIT Cloud Encyclopaedia\" class=\"wp-image-23257\" style=\"width:644px;height:auto\" srcset=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image.png 901w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-300x192.png 300w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-768x493.png 768w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-18x12.png 18w\" sizes=\"auto, (max-width: 901px) 100vw, 901px\" \/><figcaption class=\"wp-element-caption\"><em>CloudFront is your first line of defence.<\/em><\/figcaption><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\">So what does CloudFront offer in terms of protecting your web application?<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Hiding a web application<\/strong><br>Whether the application is running on EC2, in containers or in a serverless environment, the user or attacker never communicates directly with the application, but with CloudFront. The application itself is therefore \u201ehidden\u201c from the public internet.<\/li>\n\n\n\n<li><strong>DDoS protection<\/strong><br>The AWS CloudFront network has enormous network capacity spread across hundreds of endpoints worldwide. When a volumetric DDoS attack occurs, CloudFront absorbs it and distributes it across its entire infrastructure rather than forwarding it to your application. Your application is virtually unaware of this \u2013 from the application\u2019s perspective, normal (filtered) traffic continues as usual.<\/li>\n\n\n\n<li><strong>Integration with a Web Application Firewall<\/strong><br>CloudFront is connected to <em>Web Application Firewall<\/em> and every request to the web application is evaluated (and, where necessary, filtered through the WAF) at the edge location \u2013 that is, as close as possible to the attacker and as far away as possible from the application itself. Malicious traffic is blocked before it reaches the application itself, which saves on computing capacity and data traffic costs.<\/li>\n\n\n\n<li><strong>Caching as an additional security benefit<\/strong><br>CloudFront delivers static content (images, JS, CSS, HTML) directly from the cache \u2013 the application itself is not burdened at all. In the event of a DDoS attack targeting the application\u2019s static components, the application will not \u201enotice\u201c the increase in traffic at all.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">How the individual layers of protection fit together<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The true resilience of a web application is achieved only through a combination of individual layers of protection, each of which addresses a different type of threat.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Individual services <em>AWS Shield<\/em>, <em>AWS Web Application Firewall<\/em> and&nbsp;<em>Amazon CloudFront<\/em> they can also function independently, but <strong>Ideally, you should combine all three<\/strong>. This ensures that your web applications receive comprehensive protection against DDoS attacks at any layer, as well as protection against both known and unknown application threats.<\/p>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><td><strong>Layer<\/strong><\/td><td><strong>Service<\/strong><\/td><td><strong>What it addresses<\/strong><\/td><\/tr><tr><td><strong>Network (L3\/L4)<\/strong><\/td><td>AWS Shield (Advanced)<\/td><td>Volumetric DDoS, SYN flood, Security Response Team, Automatic WAF configuration<\/td><\/tr><tr><td><strong>Content Delivery Network (CDN)<\/strong><\/td><td>Amazon CloudFront<\/td><td>Handling high traffic volumes, source masking, geo-blocking<\/td><\/tr><tr><td><strong>Application (L7)<\/strong><\/td><td>AWS WAF<\/td><td>SQL injection, XSS, rate limiting, the OWASP Top 10 and other application vulnerabilities<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\">How to secure on-premises applications (outside the AWS environment)<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The principles of web application security remain the same regardless of whether the application is running in the cloud or in an on-premises environment. So if you\u2019re wondering, <strong>How do you secure an application that is not running in an AWS environment?<\/strong>, the answer is: exactly the same!<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In the AWS environment, you only implement application security services and route all background operations to your existing data centre.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This approach makes it possible to unify the protection of both cloud-based and on-premises applications <strong>under a single security architecture<\/strong>, without having to change the application stack itself.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"905\" height=\"564\" src=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-3.png\" alt=\"Securing web applications using AWS services | ORBIT Cloud Encyclopaedia\" class=\"wp-image-23260\" style=\"width:602px;height:auto\" srcset=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-3.png 905w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-3-300x187.png 300w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-3-768x479.png 768w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/image-3-18x12.png 18w\" sizes=\"auto, (max-width: 905px) 100vw, 905px\" \/><figcaption class=\"wp-element-caption\"><em>An example of how individual AWS services can be used to secure an on-premises application<\/em><\/figcaption><\/figure>\n<\/div>\n\n\n<h2 class=\"wp-block-heading\">Secure Web Applications: Summary and Recommendations<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Web application security should not be an optional extra these days, but <strong>the natural standard<\/strong>. Web applications are, in fact, routinely exposed to attacks at various levels, and relying on a single measure is simply not enough.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Effective protection is based on <strong>a combination of several layers that complement one another<\/strong> \u2013 from protection against DDoS attacks, through a Web Application Firewall, to the role of a Content Delivery Network. Only a properly designed architecture can mitigate attacks before they affect the availability or security of your web application.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Whether you run your application in the cloud or on-premises, the principles remain the same<\/strong>: layer security, minimise the attack surface and address security right from the architecture design stage, not only once an incident has occurred.<\/p>\n\n\n<style>.kadence-column23255_9c9dbe-20 > .kt-inside-inner-col{padding-top:var(--global-kb-spacing-xs, 1rem);padding-right:var(--global-kb-spacing-xs, 1rem);padding-bottom:var(--global-kb-spacing-xs, 1rem);padding-left:var(--global-kb-spacing-xs, 1rem);}.kadence-column23255_9c9dbe-20 > .kt-inside-inner-col,.kadence-column23255_9c9dbe-20 > .kt-inside-inner-col:before{border-top-left-radius:0px;border-top-right-radius:0px;border-bottom-right-radius:0px;border-bottom-left-radius:0px;}.kadence-column23255_9c9dbe-20 > .kt-inside-inner-col{column-gap:var(--global-kb-gap-sm, 1rem);}.kadence-column23255_9c9dbe-20 > .kt-inside-inner-col{flex-direction:column;}.kadence-column23255_9c9dbe-20 > .kt-inside-inner-col > .aligncenter{width:100%;}.kadence-column23255_9c9dbe-20 > .kt-inside-inner-col{background-color:var(--global-palette8, #F7FAFC);}.kadence-column23255_9c9dbe-20 > .kt-inside-inner-col:before{opacity:0.3;}.kadence-column23255_9c9dbe-20{position:relative;}@media all and (max-width: 1024px){.kadence-column23255_9c9dbe-20 > .kt-inside-inner-col{flex-direction:column;justify-content:center;}}@media all and (max-width: 767px){.kadence-column23255_9c9dbe-20 > .kt-inside-inner-col{flex-direction:column;justify-content:center;}}<\/style>\n<div class=\"wp-block-kadence-column kadence-column23255_9c9dbe-20\"><div class=\"kt-inside-inner-col\">\n<details class=\"wp-block-details is-layout-flow wp-block-details-is-layout-flow\" style=\"font-size:22px\"><summary><strong>AWS-verified expertise<\/strong><\/summary>\n<p class=\"wp-block-paragraph\"><\/p>\n\n\n\n<p class=\"wp-block-paragraph\" style=\"font-size:16px\">We are proud holders of prestigious certifications <strong>Amazon Service Delivery<\/strong> for services <span style=\"text-decoration: underline;\"><a href=\"https:\/\/www.orbit.cz\/en\/amazon-web-services-aws\/content-delivery\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon CloudFront<\/a><\/span> and&nbsp;<span style=\"text-decoration: underline;\"><a href=\"https:\/\/www.orbit.cz\/en\/amazon-web-services-aws\/web-application-firewall\/\" target=\"_blank\" rel=\"noreferrer noopener\">Web Application Firewall<\/a><\/span>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\" style=\"font-size:16px\">These specialisations demonstrate our technical expertise, real-world experience and our ability to design and operate secure web application architectures in the AWS environment.<\/p>\n\n\n<style>.kb-table-container23255_27a84c-41{overflow-x:auto;}.kb-table-container .kb-table23255_27a84c-41 th{padding-top:var(--global-kb-spacing-xxs, 0.5rem);padding-right:var(--global-kb-spacing-xxs, 0.5rem);padding-bottom:var(--global-kb-spacing-xxs, 0.5rem);padding-left:var(--global-kb-spacing-xxs, 0.5rem);text-align:center;}.kb-table-container .kb-table23255_27a84c-41 caption{text-align:center;}.kb-table-container .kb-table23255_27a84c-41 td{padding-top:var(--global-kb-spacing-xxs, 0.5rem);padding-right:var(--global-kb-spacing-xxs, 0.5rem);padding-bottom:var(--global-kb-spacing-xxs, 0.5rem);padding-left:var(--global-kb-spacing-xxs, 0.5rem);text-align:left;}<\/style><div class=\"kb-table-container kb-table-container23255_27a84c-41 wp-block-kadence-table\"><table class=\"kb-table kb-table23255_27a84c-41\">\n<tr class=\"kb-table-row kb-table-row23255_18480b-15\">\n<td  class=\"kb-table-data kb-table-data23255_f5e7ca-30\">\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><img decoding=\"async\" width=\"414\" height=\"414\" fetchpriority=\"low\" src=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/AWS_waf.png\" alt=\"\" class=\"wp-image-23295\" style=\"width:272px;height:auto\" srcset=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/AWS_waf.png 414w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/AWS_waf-300x300.png 300w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/AWS_waf-150x150.png 150w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/AWS_waf-12x12.png 12w\" sizes=\"(max-width: 414px) 100vw, 414px\" \/><\/figure>\n<\/div>\n<\/td>\n\n<td  class=\"kb-table-data kb-table-data23255_c9af5e-0b\">\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><img decoding=\"async\" width=\"414\" height=\"414\" fetchpriority=\"low\" src=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/Amazon_CloudFront.png\" alt=\"\" class=\"wp-image-23296\" style=\"width:278px;height:auto\" srcset=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/Amazon_CloudFront.png 414w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/Amazon_CloudFront-300x300.png 300w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/Amazon_CloudFront-150x150.png 150w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/Amazon_CloudFront-12x12.png 12w\" sizes=\"(max-width: 414px) 100vw, 414px\" \/><\/figure>\n<\/div>\n<\/td>\n<\/tr>\n<\/table><\/div>\n\n\n<p class=\"wp-block-paragraph\" style=\"font-size:16px\"><em>\u201eThe AWS Specialisation Programme recognises AWS Partners who demonstrate technical excellence across industries, use cases and services. To achieve an AWS Specialisation, Partners must first complete rigorous technical assessments, including reviews of multiple customer success stories aligned with the Specialisation for which they wish to be recognised.\u201c AWS.com<\/em><\/p>\n<\/details>\n<\/div><\/div>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Would you like to know more? For example, how can you detect threats and vulnerabilities right at the application code level? Which tools can be used? And what might (or should?) the ideal secure Continuous Integration and Continuous Delivery pipeline for your applications look like?<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We\u2019ll discuss this in one of our future articles <span style=\"text-decoration: underline;\"><a href=\"https:\/\/www.orbit.cz\/en\/cloud-encyclopedia\/\" target=\"_blank\" rel=\"noreferrer noopener\">Cloud Encyclopedia<\/a><\/span>, when we will focus on secure application development.<\/p>\n\n\n\n<p class=\"has-text-align-center has-theme-palette-1-color has-text-color has-link-color has-medium-font-size wp-elements-6c5e493ce32294a97d501216e537333a wp-block-paragraph\">ARE YOU INTERESTED IN THE TOPIC OF WEB APPLICATION SECURITY?<br>PLEASE GET IN TOUCH \u2013 WE\u2019D BE HAPPY TO DISCUSS YOUR EXPERIENCES WITH YOU.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><a id=\"_msocom_1\"><\/a><\/p>","protected":false},"excerpt":{"rendered":"<p>Pro\u010d je ochrana webov\u00fdch aplikac\u00ed dnes z\u00e1sadn\u00ed t\u00e9ma Asi v\u00e1s nep\u0159ekvap\u00ed, \u017ee webov\u00e9 aplikace jsou jedny z&nbsp;nejzraniteln\u011bj\u0161\u00edch v&nbsp;cel\u00e9m va\u0161em aplika\u010dn\u00edm portfoliu. Jsou obvykle dostupn\u00e9 komukoliv, a&nbsp;kdokoliv m\u00e1 tedy mo\u017enost se pokusit do nich \u201enabourat\u201c. Mo\u017en\u00e1 si \u0159\u00edk\u00e1te, \u017ee v\u00e1m se to st\u00e1t nem\u016f\u017ee nebo \u017ee takov\u00e9 \u00fatoky se t\u00fdkaj\u00ed jen velk\u00fdch firem. Data a&nbsp;statistika ale&#8230;<\/p>","protected":false},"author":10,"featured_media":23261,"template":"","meta":{"_acf_changed":false,"_kad_blocks_custom_css":"","_kad_blocks_head_custom_js":"","_kad_blocks_body_custom_js":"","_kad_blocks_footer_custom_js":"","_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"_kad_post_classname":""},"categories":[130,128],"class_list":["post-23255","encyklopedie-cloudu","type-encyklopedie-cloudu","status-publish","has-post-thumbnail","hentry","category-cloud-journey","category-cloud-security"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Ochrana webov\u00fdch aplikac\u00ed (nejen) v AWS | Encyklopedie cloudu ORBIT<\/title>\n<meta name=\"description\" content=\"Jak chr\u00e1nit webov\u00e9 aplikace pomoc\u00ed v\u00edce vrstev? Vysv\u011btlujeme, jak propojit WAF, DDoS ochranu a CDN do funk\u010dn\u00ed architektury.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.orbit.cz\/en\/cloud-encyclopedia\/33-aws-services-that-enable-you-to-secure-more-than-just-cloud-based-web-applications\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"3+3 AWS slu\u017eby, se kter\u00fdmi zabezpe\u010d\u00edte webov\u00e9 aplikace | Encyklopedie cloudu ORBIT\" \/>\n<meta property=\"og:description\" content=\"Jak kombinovat DDoS ochranu, WAF a CDN do funk\u010dn\u00ed architektury?\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.orbit.cz\/en\/cloud-encyclopedia\/33-aws-services-that-enable-you-to-secure-more-than-just-cloud-based-web-applications\/\" \/>\n<meta property=\"og:site_name\" content=\"ORBIT | create IT your own way\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-22T14:58:35+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206-1.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"628\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:title\" content=\"3+3 AWS slu\u017eby, se kter\u00fdmi zabezpe\u010d\u00edte webov\u00e9 aplikace | Encyklopedie cloudu ORBIT\" \/>\n<meta name=\"twitter:description\" content=\"Jak kombinovat DDoS ochranu, WAF a CDN do funk\u010dn\u00ed architektury?\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206-1.jpg\" \/>\n<meta name=\"twitter:label1\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"9 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\\\/\",\"url\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\\\/\",\"name\":\"Ochrana webov\u00fdch aplikac\u00ed (nejen) v AWS | Encyklopedie cloudu ORBIT\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.orbit.cz\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/EC26-clanek-0206.jpg\",\"datePublished\":\"2026-06-22T14:00:17+00:00\",\"dateModified\":\"2026-06-22T14:58:35+00:00\",\"description\":\"Jak chr\u00e1nit webov\u00e9 aplikace pomoc\u00ed v\u00edce vrstev? Vysv\u011btlujeme, jak propojit WAF, DDoS ochranu a CDN do funk\u010dn\u00ed architektury.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\\\/#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.orbit.cz\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/EC26-clanek-0206.jpg\",\"contentUrl\":\"https:\\\/\\\/www.orbit.cz\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/EC26-clanek-0206.jpg\",\"width\":1200,\"height\":628,\"caption\":\"Ochrana webov\u00fdch aplikac\u00ed (nejen) v AWS | Encyklopedie cloudu ORBIT\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.orbit.cz\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"3+3 AWS slu\u017eby, se kter\u00fdmi zabezpe\u010d\u00edte (nejen) cloudov\u00e9 webov\u00e9 aplikace\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#website\",\"url\":\"https:\\\/\\\/www.orbit.cz\\\/\",\"name\":\"ORBIT | create IT your own way\",\"description\":\"ORBIT | create IT your own way\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.orbit.cz\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#organization\",\"name\":\"ORBIT s.r.o.\",\"url\":\"https:\\\/\\\/www.orbit.cz\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.orbit.cz\\\/wp-content\\\/uploads\\\/2020\\\/11\\\/logoslogan-01.png\",\"contentUrl\":\"https:\\\/\\\/www.orbit.cz\\\/wp-content\\\/uploads\\\/2020\\\/11\\\/logoslogan-01.png\",\"width\":1417,\"height\":829,\"caption\":\"ORBIT s.r.o.\"},\"image\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.linkedin.com\\\/company\\\/orbit\\\/\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Web Application Security (not only) on AWS | ORBIT Cloud Encyclopaedia","description":"How can you protect web applications using multiple layers? We explain how to integrate a WAF, DDoS protection and a CDN into a functional architecture.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.orbit.cz\/en\/cloud-encyclopedia\/33-aws-services-that-enable-you-to-secure-more-than-just-cloud-based-web-applications\/","og_locale":"en_GB","og_type":"article","og_title":"3+3 AWS slu\u017eby, se kter\u00fdmi zabezpe\u010d\u00edte webov\u00e9 aplikace | Encyklopedie cloudu ORBIT","og_description":"Jak kombinovat DDoS ochranu, WAF a CDN do funk\u010dn\u00ed architektury?","og_url":"https:\/\/www.orbit.cz\/en\/cloud-encyclopedia\/33-aws-services-that-enable-you-to-secure-more-than-just-cloud-based-web-applications\/","og_site_name":"ORBIT | create IT your own way","article_modified_time":"2026-06-22T14:58:35+00:00","og_image":[{"width":1200,"height":628,"url":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206-1.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","twitter_title":"3+3 AWS slu\u017eby, se kter\u00fdmi zabezpe\u010d\u00edte webov\u00e9 aplikace | Encyklopedie cloudu ORBIT","twitter_description":"Jak kombinovat DDoS ochranu, WAF a CDN do funk\u010dn\u00ed architektury?","twitter_image":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206-1.jpg","twitter_misc":{"Estimated reading time":"9 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\/","url":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\/","name":"Web Application Security (not only) on AWS | ORBIT Cloud Encyclopaedia","isPartOf":{"@id":"https:\/\/www.orbit.cz\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\/#primaryimage"},"image":{"@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\/#primaryimage"},"thumbnailUrl":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206.jpg","datePublished":"2026-06-22T14:00:17+00:00","dateModified":"2026-06-22T14:58:35+00:00","description":"How can you protect web applications using multiple layers? We explain how to integrate a WAF, DDoS protection and a CDN into a functional architecture.","breadcrumb":{"@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.orbit.cz\/encyklopedie-cloudu\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\/"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\/#primaryimage","url":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206.jpg","contentUrl":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206.jpg","width":1200,"height":628,"caption":"Ochrana webov\u00fdch aplikac\u00ed (nejen) v AWS | Encyklopedie cloudu ORBIT"},{"@type":"BreadcrumbList","@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/33-aws-sluzby-se-kterymi-zabezpecite-nejen-cloudove-webove-aplikace\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.orbit.cz\/"},{"@type":"ListItem","position":2,"name":"3+3 AWS slu\u017eby, se kter\u00fdmi zabezpe\u010d\u00edte (nejen) cloudov\u00e9 webov\u00e9 aplikace"}]},{"@type":"WebSite","@id":"https:\/\/www.orbit.cz\/#website","url":"https:\/\/www.orbit.cz\/","name":"ORBIT | create IT your own way","description":"ORBIT | create IT your own way","publisher":{"@id":"https:\/\/www.orbit.cz\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.orbit.cz\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Organization","@id":"https:\/\/www.orbit.cz\/#organization","name":"ORBIT s.r.o.","url":"https:\/\/www.orbit.cz\/","logo":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.orbit.cz\/#\/schema\/logo\/image\/","url":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2020\/11\/logoslogan-01.png","contentUrl":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2020\/11\/logoslogan-01.png","width":1417,"height":829,"caption":"ORBIT s.r.o."},"image":{"@id":"https:\/\/www.orbit.cz\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.linkedin.com\/company\/orbit\/"]}]}},"taxonomy_info":{"category":[{"value":130,"label":"Cloud journey"},{"value":128,"label":"Cloud security"}]},"featured_image_src_large":["https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/06\/EC26-clanek-0206-1024x536.jpg",1024,536,true],"author_info":{"display_name":"Martin Gavanda","author_link":"https:\/\/www.orbit.cz\/en\/author\/af7b56472d1efaf6\/"},"comment_info":"","_links":{"self":[{"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/encyklopedie-cloudu\/23255","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/encyklopedie-cloudu"}],"about":[{"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/types\/encyklopedie-cloudu"}],"author":[{"embeddable":true,"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/users\/10"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/media\/23261"}],"wp:attachment":[{"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/media?parent=23255"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/categories?post=23255"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}