Radware Hybrid DDoS Attack Mitigation ServiceProtecting and Mitigating Against DDoS Attacks
Radware's Attack Mitigation System (AMS) is a real-time network and application security solution that protects the application infrastructure against network and application downtime, application vulnerability exploitation, malware spread, information theft, web service attacks and web defacement. AMS is a set of patented technologies for the most advanced internet-borne cyber-attacks. It extends the "network" of attack detection and mitigation capabilities beyond the data center for:
- Cloud-hosted business services and applications
- A mobile work force increasingly depend on remote access to internal business applications and SaaS
- Protection for tools, servers and applications within a virtualized environment
- Advanced detection and mitigation techniques for tomorrow's open network fabrics
AMS contains these key components:
- DefensePro and AppWall, for Denial-of-service (DoS) protection, Network Behavioral Analysis (NBA), Intrusion Prevention System (IPS), Reputation Engine and Web Application Firewall (WAF) - to fully safeguard networks, servers and applications against known and emerging network security threats.
- DefensePipe ― cloud-based service for end-to-end attack mitigation (on-premise and in the cloud) with volumetric DDoS attack protection and Internet pipe saturation defense measures.
- Emergency Response Team (ERT) ― specialized security experts who provide 24x7 instantaneous services to restore network and service operational status for customers facing a denial-of-service (DoS) attack
- InFlight ― anti-scraping, data theft protection device that includes a combination of several tools for transforming raw Internet traffic to meaningful business intelligence.
- APSolute Vision ― management and monitoring tool for an enterprise-wide view of security event management (SEM) and compliance.
What Does DDoS Attack Mitigation Service Do?
Organizations are challenged by an evolving threat landscape resulting in reduced revenues, higher expenses, and damaged reputations. The number and complexity of cyber-attacks such as DDoS is continuously increasing.
Radware's hybrid DDoS Attack Mitigation Service combines the requisite technologies for making your business resilient to cyber-attacks. It integrates on premise detection and mitigation with cloud-based volumetric attack scrubbing and is offered with a simple subscription pricing model.
Always-On DDoS Protection
DefensePro, Radware's on premise defense component, ensures that the datacenter is constantly protected by providing accurate real-time detection and mitigation of multi-vector DDoS attacks, which is not possible using only a cloud based DDoS solution.
Integrated Hybrid Attack Mitigation
Traffic is diverted to DefensePipe, Radware's cloud-based scrubbing center, during volumetric attacks when the enterprise's Internet pipe is about to saturate. This enables smooth transition between mitigation options assuring immediate protection with no disruption gaps or adding to scrubbing center latency.
ERT for DDoS Attack Mitigation Service
DDoS Attack Mitigation Service includes 24x7 Emergency Response Team (ERT) support for hands-on attack mitigation assistance. The ERT provides expertise needed during prolonged, multi-vector attacks. The ERT's experience fighting the most widely known attacks in the industry provides best practice approaches to fight each and every attack.
Monitor. Analyze. Report.
DDoS Attack Mitigation Service includes active monitoring and health-checks on the protected service or application, pipe saturation monitoring and customer notification pre saturation. Reports of all attacks mitigated are available on a web-based service portal. When Radware's ERT is involved in mitigating an attack, a full post attack analysis report is provided.
What Makes DDoS Attack Mitigation Service Better?
Attack Mitigation Service provides the most comprehensive attack mitigation coverage against multiple attack types, with a single point of contact delivering equipment and service.
A hybrid attack mitigation service guarantees that traffic is diverted to the scrubbing center only when the enterprise's Internet pipe is about to saturate. It clears attack traffic before it reaches the company's Internet pipe, protecting against downtime and service degradation.
Features and Benefits:
Fully Managed DDoS Mitigation Services & DDoS Protection Solutions with ERT Premium
Radware's Attack Mitigation Service is a fully managed DDoS attack mitigation service and protection solution that includes 24/7 protection from today's DDoS attacks.
Radware's Emergency Response Team (ERT) provides extensive post-attack information, and on-going configurations, reports and recommendations. The service includes an ERT expert that performs a quarterly review of the forensics report generated by Attack Mitigation Service and provides recommendations and analysis on DDoS attack details.
- 24/7 monitoring and blocking of DDoS attacks
- Network statistics and attack situation awareness available on an online portal
- Real-time attack mitigation with direct "hot-line" access to the ERT
- ERT post attack forensic analysis and recommendations
- Quarterly review of forensics reports and security configurations
- On-going periodical configurations, reports and recommendations
Attack Mitigation Service provides the most comprehensive DDoS attack mitigation coverage that includes:
- Full OPEX based Attack Mitigation Service subscription
- Extensive managed services by top DDOS experts
- End-to-end service and protection: A hybrid DDoS protection solution leaving the ownership, monitoring and mitigation with the service provider
|Benefits of a DDoS Protection Solution|
|Hybrid DDoS protection solution with widest security coverage||
|Shortest time to DDoS protection||
|Fully managed, most professional security service available||
Attack Mitigation Solution:
Protect Enterprises Against Cyber Attacks with Always-On DDoS Attack Detection and Mitigation
Radware's attack mitigation is a hybrid solution integrating on-premise detection and mitigation with cloudbased volumetric attack scrubbing and 24x7 Emergency Response Team (ERT) support.
Organizations are challenged by an evolving threat landscape that reduces revenues, increases expenses and damages reputations. Today's cyber-attackers use sophisticated methods ― often multiple attack-vectors in the same attack campaign ― to bring down datacenters and organizations' web presence. The simplicity of launching such cyber-attacks and variety of attack tools available are reasons why more organizations are suffering from increased attacks, such as DDoS.
The Age of the Integrated Hybrid Solution
Today's standard defense technologies including DDoS protection, IPS, anomaly & behavioral analysis, SSL protection and web application firewalls (WAFs) are often provided in point solutions. These systems are almost never integrated and require dedicated resources consisting of IT managers and security experts to maintain and synchronize.
Radware's hybrid attack mitigation solution combines the requisite technologies for making businesses resilient to cyber-attacks with on-premise systems and the ability to scale on demand with a cloud based scrubbing service.
Attack Mitigation Solution
By protecting enterprises against known and emerging network and application threats in real-time, Radware's layered approach is designed to help organizations mitigate attacks that can be detected and offer a security solution that combines detection and mitigation tools from a single vendor. Radware's solution provides maximum coverage, accurate detection and shortest time to protection.
Radware's attack mitigation solution offers a multi-vector attack detection and mitigation solution, handling network layer and server based attacks, malware propagation and intrusion activities. Complete with anti-DoS, network behavioral analysis, SSL defense, IPS, WAF and in-the-cloud DoS mitigation in one integrated system, the solution is supported on dedicated hardware designed to fight multiple attack vectors simultaneously.
To mitigate network attacks that threaten to saturate the Internet pipe, Radware's attack mitigation solution includes a cloud based DDoS scrubbing service that works in sync with on premise attack mitigation devices.
Enhanced with a central monitoring and reporting system, the solution provides on-going unified situational awareness of the network and applications using a single security event information management (SEIM) engine for all components.
During long lasting attack campaigns where the system cannot mitigate all attack vectors out of the box – Radware provides the support of its Emergency Response Team – a team of security experts that provide 24x7 real-time security service to help customers restore operational status under attack.
Always-On DDoS Protection with Optimal Attack Mitigation
Radware's on-premise attack mitigation device ensures the datacenter is constantly protected by providing accurate real-time detection and mitigation of multi-vector DDoS attacks which is not possible using only a cloud-based DDoS solution.
Only in cases of volumetric attacks, where the organization's Internet pipe is about to saturate, is traffic diverted to Radware's cloud-based scrubbing center where attack traffic is cleared before it reaches the company's Internet pipe. This enables a smooth transition between mitigation options assuring immediate protection with no disruption gaps and without adding the scrubbing center latency.
Only 15% of DDoS attacks handled by Radware's ERT saturated the Internet pipe1. These hybrid protection capabilities ensure that traffic is not diverted unless it is absolutely necessary. As a result, the organization is fully protected and time to mitigation is measured in seconds.
Over 100 attack vectors on the network and application layers are detected and mitigated including:
- Large volume network attacks
- SYN floods
- Low and slow
- HTTP floods
- SSL encryption
- Brute force
- BGP table attacks
- Session attacks
- Invasive scans
Radware's Hybrid Attack Mitigation Solution
Monitor. Analyze. Report.
Radware's attack mitigation solution includes active monitoring and health checks on the protected service or application. In addition, the system performs pipe saturation monitoring and customers are notified when there is a risk for saturation and action is required.
Ongoing reports regarding all attacks that were mitigated by the system (automatically mitigated or invoked) are available for viewing on a web-based service portal. When Radware's ERT is involved in mitigating an attack, a full post attack analysis report is provided to the customer.
Single Point of Contact for DDoS Attack Mitigation
Radware's solution includes 24x7 ERT support for hands-on attack mitigation assistance from a single point of contact. The ERT provides expertise needed during prolonged, multi-vector attacks. This includes working closely with customers to decide on the diversion of traffic during volumetric attacks, assisting with capturing files, analyzing the situation and ensuring the best mitigation options are implemented. The ERT's experience with fighting the most widely known attacks in the industry provides best practice approaches to fight each and every attack.
Web Applications – Detect. Signal. Block.
Radware's web application firewall (WAF) provides complete protection against: web application attacks, web application attacks behind CDNs, advanced HTTP attacks (slowloris, dynamic floods), brute force attacks on login pages and more.
A messaging mechanism enables Radware's WAF to signal Radware's perimeter attack mitigation device when a web application attack is detected and needs to be blocked at the perimeter, protecting the rest of the network.
As organizations migrate applications to the cloud, Radware offers a cloudbased WAF service. Radware's Hybrid Cloud WAF offering provides a fully managed enterprise grade WAF that protects both on-premise and cloudbased applications, using a single technology solution.
Mitigating the SSL Threat
Radware's SSL mitigation solution is unique in the industry. It mitigates SSL encrypted flood attacks at the network perimeter. The solution mitigates SSL-based attacks using challenge-response mitigation techniques and SSL decryption and challenge response mechanisms are enforced only on suspicious traffic. The result is the lowest latency SSL mitigation solution in the industry, as legitimate traffic is not affected by the mitigation efforts.
Download the Radware Attack Mitigation Solution Datasheet (PDF).