What is Cloud Armor Adaptive Protection?

Cloud Armor Adaptive Protection is a machine learning-based security feature that automatically detects and alerts on unusual traffic patterns indicative of Layer 7 DDoS attacks (HTTP floods, cache-busting attacks). It continuously models your application's normal traffic baseline (per-IP, per-URL, per-user-agent). When it detects an anomaly, it generates an alert with a proposed rule (IP block or rate limit) that you can deploy to Cloud Armor with one click. In auto-deploy mode, it can automatically apply temporary mitigation rules without human intervention, providing protection in the seconds to minutes window before a human can respond. Adaptive Protection is included at no extra cost with Cloud Armor Managed Protection Plus tier. It complements the signature-based WAF rules with behavioral analysis.