Kona Site Defender

Protect your apps and APIs against the largest and most sophisticated attacks with a web application firewall and DDoS protection at the edge.


Highest Accuracy

Kona Site Defender employs a proprietary anomaly detection engine designed to deliver the highest accuracy out of the box. Threat researchers and machine learning algorithms continuously identify anomalies, while testing new rules and updates against live traffic with the goal of maintaining the lowest false positives and negatives and stopping the latest threats against continuously evolving application environments.

Protect Every App, Anywhere

Whether they’re deployed on-prem or across multiple cloud providers, whether they’re traditional websites or web APIs, or whether you have a single application or hundreds, Kona Site Defender helps you protect all of your applications with a single, easy-to-manage solution to maintain a consistent and up-to-date security posture — even as the applications you’re protecting continue to change.

Manage Your WAF, Your Way

You need application security that can be customized for your unique requirements and the organizations you support. Kona Site Defender provides you with total flexibility ― integrating into change control, automating protections, providing APIs for your development toolchain, and offering managed services that offload security management, monitoring, and mitigation to Akamai experts 24/7.


Customizable and Automated Protection

Kona Site Defender provides both customizable and automated protection in one solution, while expert-curated rule sets allow you to tailor protection for accuracy in the most challenging environments. Automated protection extends security across your entire application without taxing resources.

Automatic API Discovery and Security

Automatically discover previously unidentified APIs – including API endpoints, characteristics, and definitions. This visibility enables security teams to easily stay on top of changing definitions or legacy APIs. Negative API security will then automatically inspect requests for threats, while a positive model allows only predefined APIs.

Zero-Second DDoS Mitigation SLA

Built on the Akamai Intelligent Edge Platform, Kona Site Defender is designed to protect your applications from the largest DDoS threats, instantly dropping network-layer DDoS attacks at the edge and responding to application-layer attacks within seconds.

Granular Attack Visibility and Reporting

Executive-level dashboards and in-depth security analytics provide different views into your security events. Integration with other security solutions and security information and event management (SIEM) provides a unified view of security posture.

IP Reputation (Optional)

With visibility into prior malicious behavior against other organizations, the optional Client Reputation service alerts you to traffic coming from known malicious clients, using a risk score in four different categories and tailored to your organization, so you can take appropriate action.

Automatic API Discovery and Security

If your organization doesn’t have the resources or expertise to manage your WAF, Akamai provides optional managed security services to augment your team, from regular configuration tuning to 24/7 monitoring and live attack response.