Views:

TrendAI Vision One™ Cloud IPS provides TrendAI Vision One™ managed IPS rule groups for Amazon Web Services (AWS) Network Firewall through Partner Managed Rules integration. This integration requires no additional deployment or infrastructure changes after Cloud IPS is enabled in AWS.

Key capabilities:
  • Native integration: Add TrendAI Vision One™ managed rule groups directly to AWS Network Firewall policies.
  • No infrastructure changes: No routing modifications or additional appliances required.
  • Threat intelligence: Signatures from Digital Vaccine™ and Zero Day Initiative (ZDI), covering malware and CVE exploits.
  • Automatic updates: TrendAI Vision One™ automatically updates rule groups.
Note
Note
Cloud IPS currently supports AWS only.
Cloud IPS integrates natively with AWS Network Firewall to provide inline threat protection both for inbound and outbound traffic:
  1. Network traffic is generated either from the Internet via the Internet Gateway or from your internal application in a subnet.
  2. AWS Network Firewall inspects traffic using TrendAI Vision One™ managed rules (Malware, Client-side CVE, and Server-side CVE).
  3. Inspected traffic is forward to the destination (either your application subnet or the Internet).

Rule groups

The following rule groups are provided by TrendAI Vision One™ to protect your AWS environments.
  • Malware Protection
    • Rule group: TrendAI-MalwareBlockStrictOrder
    • Blocks outbound C2 traffic from malware-infected workloads.
  • Client-Side CVE Protection
    • Rule group: TrendAI-CVEClientBlockStrictOrder
    • Blocks outbound traffic attempting to exploit client-side vulnerabilities.
  • Server-Side CVE Protection
    • Rule group: TrendAI-CVEServerBlockStrictOrder
    • Blocks inbound traffic attempting to exploit server-side vulnerabilities.
Note
Note
Pre-disclosure ZDI filters are not included.
Related information
Comments (0)