THE IMPORTANCE OF DDOS PROTECTION HARDWARE

Download PDF
0 downloads 110 Views 365KB Size Report
Comment
network pipes of an organization and to bring down their network ... take any website/web services offline. ... managed
THE IMPORTANCE OF DDOS PROTECTION HARDWARE Stats:

DDOS ATTACKS ON ENTERPRISES INCREASED BY OVER 13 PERCENT IN 2017 COMPARED TO 2016. IT IS ESTIMATED THAT ENTERPRISES CAN LOSE UP TO $5000 $19,999 PER HOUR. ACCORDING TO DELOITTE, OVER 10 MILLION DDOS ATTACKS WILL OCCUR DURING 2017. (AT OVER 27,000 ATTACKS DAILY). ACCORDING TO THE RECENT REPORT, 41% ENTERPRISE AND GOV’T INSTITUTIONS AND 60% OF DATA CENTER OPERATORS REPORTED DDOS ATTACKS EXCEEDING THEIR TOTAL INTERNET BANDWIDTH.

EVOLUTION OF APPLICATION -LAYER DDOS ATTACKS By HaltDos

May 2017

There was a time when attackers used only the common Distributed Denial of Service (DDoS) techniques to flood network pipes of an organization and to bring down their network resources. These high-bandwidth “volumetric attacks” can easily overwhelm the connection and can take any website/web services offline. To defend against volumetric attacks, Internet service providers (ISPs) created managed security services, which had been helping enterprises with the cloud-based DDoS protection for a long time. 

In the recent five to six years, attackers have developed more sophisticated tools and have found many different ways to target businesses with DDoS attacks. Today, the “Applicationlayer” is the most targeted resource for launching a DDoS attack. These application-layer attacks are most complex to detect because they consume a very less bandwidth and are sly in nature when compared to the volumetric attacks. Application-layer attacks can also threaten critical business applications and services such as HTTP, DNS, SMTP.

CONTINUE TO PAGE 2

THE IMPORTANCE OF DDOS PROTECTION HARDWARE IN A VIRTUAL ERA

FIREWALL AND IDS FAIL TO DETECT DDOS ATTACKS The size of DDoS attacks are increasing immensely year over year, 200% accurately and they remain a major threat to enterprises and ISPs alike. Many enterprises still rely on perimeter-based security appliances such as firewalls and IPS for network protection. But firewall and IPS/IDS do not detect DDoS attacks. In addition, these devices allow protocols such as HTTP and DNS which allows attackers to launch application-layer attacks very easily. Firewalls and intrusion prevention systems are frequent targets of DDoS attacks as the attackers choke the connection tables in these devices.   

THE NEED OF ON-PREMISE DDOS PROTECTION APPLIANCE Many organizations are using cloud-based managed security services which can only protect them against the volumetric DDoS attacks, leaving them vulnerable to most popular and complex application-layer attacks. The detection and mitigation of application-layer attacks require an hardwarebased DDoS mitigation solution that’s deployed at an enterprise’ perimeter. Many companies are offering these On-premise DDoS protection appliances but the question comes down to us is, what type of On-premise solution fits well in the enterprise's network.

Availability must be a core objective of enterprise security, especially when organizations rely on critical web services, such as financial transactions, data processing, etc. If key services and applications are unavailable, business comes to a halt. Today’s attackers are well aware of this fact—and taking action. Armed with innovative new tools, attackers view data centers as their prime targets-- and are increasingly deploying application-layer attacks to wreak havoc on business availability. HaltDos DDoS Mitigation  Solution is purposely built for enterprises for providing 360° enterprise-level network security. It is designed to automatically detect and accurately mitigate the widest variety of DDoS attacks without requiring any human intervention. The solution offers heuristic, behavioral, reputation-based and signature-based anomaly detection techniques to detect and mitigate complex type of DDoS attacks.

With built-in DDoS detection and mitigation as well as Application firewall- HaltDos intends to provide an intelligent Web application security and complete protection against the widest variety of DDoS attacks such as: TCP Flood SYN Flood ACK Flood PSH+ACK Flood HTTP Flood UDP Flood

DNS Flood DNS Amplification NTP Flood SSL Attacks Slowloris R.U.D.Y.

PAGE 2

Apache Killer SIP Flood Zero Day OWASP Top 10

To Download Technical Specifications  of HaltDos' Hardware Solution, Please visit:

haltdos.com/appliance Or Contact Us  :

[email protected]