Embed Size (px)
DESCRIPTION
Overview of Radware's Attack Mitigation System, and particularly focused on DefensePro for Ddos Security
….the most effective Attack Mitigation System
•A Short intro to AMS and DefensePro
Network
Server
Application
Business
Mapping Security Protection Tools
Slide 2
Large volume network flood attacks
High & Low rate application DoS attacks
“Low & Slow” DoS attacks
Brute force attack
Web application attacks
(e.g. XSS, Injections, CSRF)
SYN flood
Port scan
Network scan
Intrusion
Intrusion, Malware
DoS Protection
Behavioral Analysis
IP Reputation
IPS
WAF
SHUTDOWN
Introducing Radware Attack Mitigation System
AMS Protection Set
Slide 4
NBA• Prevent application resource misuse • Prevent zero-minute malware
DoS Protection• Prevent all type of network DDoS attacks
IPS• Prevent application vulnerability exploits
Reputation Engine• Financial fraud protection• Anti Trojan & Phishing
WAF• Mitigating Web application threats and zero-day attacks
OnDemand Switch: Designed for Attacks Mitigation
Slide 5
OnDemand SwitchPlatform Capacity up to 40Gbps (10, 20, 30, & 40Gbps Available)
DoS Mitigation Engine• ASIC based• Prevent high volume attacks• Up to 25 Million PPS of attack protection
NBA Protections & WAF
IPS & Reputation Engine• ASIC based String Match & RegEx Engine• Performs deep packet inspection
Designed to Perform Under Attack
Multi-GbpsCapacity
LegitimateTraffic
25 MillionPPS
AttackTraffic
Other Network Security Solutions
Multi-GbpsCapacity
LegitimateTraffic
+ Attack
AttackAttack
AttackTraffic
DefensePro
Other Solutions handle attack traffic at the expense of legitimate traffic!
Other Solutions handle attack traffic at the expense of legitimate traffic!
Attack traffic does not impact legitimate traffic
Attack traffic does not impact legitimate traffic
DefensePro Layers of Defense
Slide 7
Behavioral-based protections
DMEDDoS Mitigation Engine
(25M PPS)
L7 Regex Acceleration ASIC
Multi Purpose Multi Cores CPU’s(Up to 40 Gbps)
& Reputation Engine
Hardware Architecture – Tailored for Attack Mitigation
Radware AMS & ERT/SOC
Slide 8
• Security Operations Center (SOC)– Provides weekly and emergency signature updates– Maintains on-going application vulnerability protection
• Emergency Response Team (ERT)– Provide 24x7 service for customers under attack– Neutralize DoS/DDoS attacks and malware outbreaks
Radware Security Products Portfolio
Slide 9
AppWallWeb Application Firewall (WAF)
DefenseProNetwork & Server attack prevention device
APSolute VisionManagement and security reporting & compliance
PayPal proof
Slide 10
Thank Youwww.radware.com
