AWS Shield vs Cloudflare SASE & SSE Platform comparison

Amazon Web Services (AWS) and Cloudflare are both solutions in the Distributed Denial of Service (DDOS) Protection category. Amazon Web Services (AWS) is ranked #6 with an average rating of 8.8, while Cloudflare is ranked #5 with an average rating of 8.7. Additionally, 100% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 100% of Cloudflare users who would recommend it.

AWS Shield

Read 6 AWS Shield reviews

3,030 Views
2,557 Comparison Views

100% willing to recommend

Cloudflare SASE & SSE Platform

Read 19 Cloudflare SASE & SSE Platform reviews

2,149 Views
1,596 Comparison Views

100% willing to recommend

AWS Shield

Cloudflare SASE & SSE Platform

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between AWS Shield and Cloudflare SASE & SSE Platform based on real PeerSpot user reviews.

Find out in this report how the two Distributed Denial of Service (DDOS) Protection solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed AWS Shield vs. Cloudflare SASE & SSE Platform Report (Updated: October 2024).

Buyer's Guide

AWS Shield vs. Cloudflare SASE & SSE Platform

October 2024

Download the complete report

Helped 816,562 peers since 2012

Categories and Ranking

AWS Shield

Ranking in Distributed Denial of Service (DDOS) Protection

6th

Average Rating

8.6

Number of Reviews

Ranking in other categories

No ranking in other categories

Cloudflare SASE & SSE Platform

Ranking in Distributed Denial of Service (DDOS) Protection

5th

Average Rating

8.6

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

Email Security (13th), Secure Web Gateways (SWG) (8th), Data Loss Prevention (DLP) (8th), Cloud Access Security Brokers (CASB) (7th), Access Management (5th), Bot Management (3rd), ZTNA as a Service (4th), ZTNA (2nd), Secure Access Service Edge (SASE) (8th), Remote Browser Isolation (RBI) (2nd)

Featured Reviews

SteveNg

Head of Strategic Alliances at Quantum Security

The solution automatically scales according to traffic, only takes minutes to deploy, and is maintenance-free

Ultimately, the cost of the solution goes up as we add features, but I believe over time AWS has been adding more frequently asked features. Depending on the website, if our website has more transactions, more sensitive information, and more value, then, of course, we need more features. For us, we only require basic information, a website, some custom consumer, end user, and front-facing purposes. We end up having to pay extra for features that AWS adds that we don't need. The pricing of the solution can be improved.

Read full review

Leandro Soares Costa

Coordinator of the Architecture Security Team at TOTVS

Replaces traditional VPN and enables endpoint exposition

It's the endpoint exposition. We don't need to expose our VPN server to the internet and need a zero-test solution. I can apply some conditional access to the endpoint that's connecting to our network to check their security policies or the security condition of their workstation. Once the workstation is trying to connect to my internal network, then I would like to check the discrete condition of these endpoints that are trying to access my internal network. We created some conditional access. We have CrowdStrike, to check if the CrowdStrike is installed, to check if it's updated, and to check for Windows updates. We created some conditional policies to check it.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"We have integrated the tool with Active Directory. The most important feature is that it's transparent and doesn't degrade the performance of our solution. Additionally, it's easy to configure, which is crucial for us. It's easy to use and set up and stops attacks on our servers. We haven't encountered any attack problems because the solution stops them in real-time. AWS Shield specifically focuses on defending against denial-of-service attacks, making it a great solution for that type of threat."

"It is integrated with AWS. So, it gives you a good first step."

"The product has a good mechanism to analyze trends and trigger events."

"I am impressed with the product's multiple features like security."

"The solution's ease of use is the most valuable feature."

"The product is easy to use."

"Cloudflare, in my opinion, was easy to implement."

"Cloudflare DDoS is better than its competitors for its security, deployment, and scalability."

"The best feature is rate limiting. If I'm expecting 500 visits per hour, Cloudflare will limit the requests if I suddenly get 50,000."

"It will take the blow rather than our applications should an attack occur."

"The solution has different options that can be used to differentiate DDoS attacks."

"Cloudflare Zero Trust Platform removes the risk of exposing the applications to the public."

"It's the endpoint exposition. We don't need to expose our VPN server to the internet and need a zero-test solution. I can apply some conditional access to the endpoint that's connecting to our network to check their security policies or the security condition of their workstation. Once the workstation is trying to connect to my internal network, then I would like to check the discrete condition of these endpoints that are trying to access my internal network. We created some conditional access. We have CrowdStrike, to check if the CrowdStrike is installed, to check if it's updated, and to check for Windows updates. We created some conditional policies to check it."

"It is a stable solution."

More Cloudflare SASE & SSE Platform pros

Cons

"The product is expensive."

"The management of it is a bit hard. If you don't engineer it on the front side, it is hard to go back in and change it. It could be improved in terms of architecture requirements and then ongoing support requirements as a secondary component to it. People tend to set up things like this, and they just expect it to work without the care and feeding that needs to go back into it either from an application team or a network environment team."

"The product should give users more flexibility to customize their security policies according to their requirements."

"We end up having to pay extra for features that AWS adds that we don't need."

"The time taken to detect anomalies must be reduced."

"The product needs to improve its logs and reports to make it read better."

"Our customers no longer use Cloudflare because its service is subpar."

"The pricing is an area that can be improved. Pricing, as far as I recall, was the source of our problems."

"Cloudflare Zero Trust Platform needs to improve its documentation. It took time to do the implementation."

"For the topic of improvement, providing some training material is one of my suggestions."

"The initial onboarding was causing us some confusion."

"Our subscription plan for the solution has a limitation of bot signatures."

"The onboarding process can be improved a little bit."

"Cloudflare DDoS has poor technical support."

More Cloudflare SASE & SSE Platform cons

Pricing and Cost Advice

"We pay $3000 per month for the solution."

"It depends on your subscription level and the volume that you're spending with AWS. So, it is very relative to the consumption alignment in your subscription level. It is a well-constructed, scalable pricing option, but it is relative to how much you're spending on AWS. Because the more you spend, typically, the more you get off on services like this. I find it to be comparable to other solutions."

"The cost depends on traffic each month, so on average, it costs us between US$200 and US$300 per month."

"The tool is cheap."

"The tool's pricing is good."

"The solution is not that expensive."

"Cloudflare Zero Trust Platform's pricing is good."

"The price tag is no longer $200,000, but rather $300,000 to $400,000. It's twice."

"The pricing is somewhere in the middle. I would rate the pricing a seven out of ten."

"The pricing of the solution is cheap. The licensing cost is also very low. I rate the cost and pricing a three out of ten."

"The solution's pricing lacks transparency."

"My company has to make yearly payments towards the licensing costs attached to the solution. There are no hidden charges apart from the licensing costs of the solution."

"The prices are slightly expensive."

See which vendors are best for you

Use our free recommendation engine to learn which Distributed Denial of Service (DDOS) Protection solutions are best for your needs.

See recommendations

816,562 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

17%

Computer Software Company

16%

Insurance Company

Manufacturing Company

Computer Software Company

17%

Financial Services Firm

Comms Service Provider

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about AWS Shield?

We have integrated the tool with Active Directory. The most important feature is that it's transparent and doesn't degrade the performance of our solution. Additionally, it's easy to configure, whi...

See all answers

What is your experience regarding pricing and costs for AWS Shield?

The tool is cheap.

See all answers

What needs improvement with AWS Shield?

The time taken to detect anomalies must be reduced. The tool has a few parameters based on which it tries to understand anomalies. It would be better if the anomalies were identified quickly.

See all answers

What do you like most about Cloudflare Access?

The tool also offers good scalability, and the dashboard, along with real-time analytics, is very good.

See all answers

What is your experience regarding pricing and costs for Cloudflare Access?

The price of Cloudflare Access is the same as compared to Akamai, but I get better performance from Cloudflare. My company has to make yearly payments towards the licensing costs attached to the so...

See all answers

What needs improvement with Cloudflare Access?

Cloudflare Access has strong integration with Microsoft, among other platforms. However, when it comes to Kaspersky, we have clients who typically encounter challenges. The usual setup involves con...

See all answers

Comparisons

Cloudflare vs AWS Shield

Compared 29% of the time

Azure DDoS Protection vs AWS Shield

Compared 24% of the time

Akamai App and API Protector vs AWS Shield

Compared 6% of the time

Arbor DDoS vs AWS Shield

Compared 3% of the time

Fortinet FortiDDoS vs AWS Shield

Compared 3% of the time

More AWS Shield Competitors

Twingate vs Cloudflare SASE & SSE Platform

Compared 13% of the time

Prisma Access by Palo Alto Networks vs Cloudflare SASE & SSE Platform

Compared 7% of the time

Cato SASE Cloud Platform vs Cloudflare SASE & SSE Platform

Compared 5% of the time

Prolexic vs Cloudflare SASE & SSE Platform

Compared 4% of the time

Zscaler Zero Trust Exchange Platform vs Cloudflare SASE & SSE Platform

Compared 4% of the time

More Cloudflare SASE & SSE Platform Competitors

Product Reports

Buyer's Guide

AWS Shield

November 2024

Download AWS Shield product report

Buyer's Guide

Cloudflare SASE & SSE Platform

November 2024

Download Cloudflare SASE & SSE Platform product report

Also Known As

No data available

Cloudflare Area 1 Email Security, Cloudflare Bot Management, Cloudflare Gateway, Cloudflare Zero Trust Platform, Cloudflare DDoS

Learn More

Amazon Web Services (AWS)

Cloudflare

Overview

AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS. AWS Shield provides always-on detection and automatic inline mitigations that minimize application downtime and latency, so there is no need to engage AWS Support to benefit from DDoS protection.

Cloudflare SASE & SSE is a comprehensive platform that integrates Secure Access Service Edge (SASE) and Security Service Edge (SSE) functionalities. As a SASE solution, it replaces traditional network security with a cloud-based model that combines networking and security services at the network edge, using a "Zero Trust" approach for continuous verification of access. The SSE component focuses on securing access to cloud applications, offering Cloud Access Security Broker (CASB) functionalities for access control and security policy enforcement, and Data Loss Prevention (DLP) to safeguard sensitive information. Leveraging Cloudflare's extensive global network with over 320 locations, Cloudflare One delivers security and network services close to users, enhancing performance, reducing latency, and providing a consistent user experience. Key features include Zero Trust Network Access (ZTNA), CASB, Secure Web Gateway (SWG), and Cloud DLP to ensure secure and efficient application access and data protection.

Sample Customers

netflix, dow jones, mapbox, pearson, rovio, youview, moviestar planet, asurion, payplug, hour of code

23andMe

Buyer's Guide

AWS Shield vs. Cloudflare SASE & SSE Platform

October 2024

Free Report: AWS Shield vs. Cloudflare SASE & SSE Platform

Find out what your peers are saying about AWS Shield vs. Cloudflare SASE & SSE Platform and other solutions. Updated: October 2024.

DOWNLOAD NOW

816,562 professionals have used our research since 2012.

See our AWS Shield vs. Cloudflare SASE & SSE Platform report.

See our list of best Distributed Denial of Service (DDOS) Protection vendors.

We monitor all Distributed Denial of Service (DDOS) Protection reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.