Radware, a leading provider of cyber security and application delivery solutions, introduced a comprehensive solution for protection from network layer attacks, including increased threats stemming from Internet-of-Things (IoT) botnets. These newest additions to the Radware DefensePro line provide automated protection from fast moving, high volume, encrypted or very short duration threats, including: IoT-based attacks like Mirai, as well as Pulse, Burst, DNS, TLS/SSL attacks, and those attacks associated with Permanent Denial of Service (PDoS) and Ransom Denial of Service (RDoS) techniques.
“By 2020, Gartner predicts we will see 26 billion connected devices. That is hundreds of thousands of new, vulnerable devices coming online every day increasing the threat surface in a way beyond comprehension,” said Carl Herberger, Vice President of Security Solutions at Radware. “The massive Mirai attack in October 2016 crippled internet infrastructure and services, and IoT Botnets have been rumored to be involved in nearly every major DDoS attack since. Moreover, the future portends exponentially larger and more destructive threats. It is critical that companies protect their networks and assets as the IoT landscape expands.”
Radware built its new DefensePro line to overcome both the complexity and scale of these sophisticated IoT botnets. New behavior-based algorithms protect against known and unknown DNS flood attacks in the most scalable/bullet-proof way: Protection based on ingress-only traffic that eliminates the need for bi-directional traffic for DNS attack protection. A single deployment model offers both authoritative and recursive DNS service protection and advanced attack coverage to protect against the latest DNS attacks, including the DNS Water Torture Attack used on Dyn US in October 2016. The DefensePro product line’s new, in-the-box, patented SSL attack mitigation provides the lowest latency, most efficient SSL-attack protection with the widest coverage from SSL-based DDoS attacks.
In addition, new burst attack protection detects and mitigates short bursts of high-volume attacks. With the new DefensePro line, organizations can avoid the frequent disruptions burst attacks can cause in their network server’s SLA and ensure legitimate users have uninterrupted access to services.
As part of its new line of DefensePro products, Radware now offers a full range of next generation protection platforms that includes:
- DefensePro VA – a virtual appliance with mitigation capacity of up to 20Gbps. Best for organizations operating in a virtualized environment and Software Defined Data Centers (SDDC) as well as for cloud hosting providers looking to scale protection to their customers.
- DefensePro 20 – Supporting 2Gbps through 12Gbps of legitimate traffic with up to 20Gbps mitigation capacity. Best fit for small and medium size enterprises.
- DefensePro 60 – Supporting 10Gbps through 40Gbps of legitimate traffic with up to 60Gbps mitigation capacity. Designed for large data center protection deployed by large enterprises, eCommerce and service providers.
- DefensePro 200 & 400 – Radware’s largest devices offering up to 200Gbps and 400Gbps mitigation capacity respectively. Best fit for carriers, scrubbing centers and service providers looking for a single platform to handle very high volume attacks.
Radware’s full suite of DefensePro products are based on industry-leading technologies that provide the most advanced DDoS protection in the market, including:
- Behavioral-based algorithms for attack detection that goes beyond just SYN flood protection to offer a wide range of protections at high mitigation capacity, including SSL, DNS, and more.
- Real-time signature creation and advanced challenge escalations to achieve highest mitigation accuracy that can automatically mitigate unknown attacks and minimize the impact on legitimate traffic.
- A comprehensive set of security modules and algorithms including behavioral security, protocol anomaly detection and session anomaly detection, intrusion prevention, and anti-scanning to provide the widest data center attack detection.
- High performance throughout the suite of devices, offering various mitigation capacity to meet different needs—ranging from 20 Gbps all the way up to 400 Gbps mitigation capacity per device, allowing customers to enjoy the widest range of simultaneous cyber-attack protection in the industry.
- Integrated solution that offers full automation of the attack lifecycle and synchronized messaging to improve detection and mitigation response and accuracy.
To learn more about Radware’s new DefensePro product line, please visit
https://www.radware.com/defensepro-iot-botnet-killer/.
