Cloud Armor

Definition

Google Cloud security service that provides DDoS protection and web application firewall, ensuring robust defense against online threats.

Use Cases

Provider Equivalents

Frequently Asked Questions

What's the difference between Cloud Armor and Cloud CDN?
Cloud CDN speeds up content delivery by caching responses closer to users. Cloud Armor is a security layer that blocks or rate-limits malicious traffic (like DDoS or web attacks). They’re often used together: CDN improves performance, while Cloud Armor reduces harmful requests before they hit your application.
When should I use Cloud Armor?
Use Cloud Armor when you expose web applications or APIs over HTTP(S) through Google Cloud external HTTP(S) Load Balancing and you need protection from common web attacks (for example SQL injection or XSS), bot/abuse traffic, or application-layer DDoS. It’s especially useful for internet-facing services, login endpoints, checkout flows, and any API that could be targeted for scraping or brute-force attempts.
How much does Cloud Armor cost?
Pricing is usage-based and typically depends on factors like the number of security policies, the number of rules you configure (including preconfigured WAF rules), and the volume of requests evaluated by Cloud Armor. Costs can increase with higher traffic, more complex rule sets, and advanced features such as rate limiting. For exact numbers, use the Google Cloud Pricing page and estimate with your expected request volume and policy/rule count.

Category: security

Difficulty: intermediate

Related Terms

See Also