Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
Helping you stay online… Always
CONTENTS
TABLE OF
01
02
03
04
05
INTRODUCTION
ERA OF DDoS
ATTACKS
FIREWALLS NOT
ENOUGH
HALTDOS
SOLUTION
DIFFERENTIATING
FA...
HALTDOS
ABOUT
RIDE THE HIGHWAY WITH HALTDOS
Amidst fierce competition, your business cannot
afford to slow down. With haltDo...
4
CO-FOUNDERS
Anshul Saxena
• CTO of AKS IT Services Pvt. Ltd.
• MS Information Security, Georgia
Institute of Technology
...
5
DDoS
Short for Denial of Service, DoS is a type of
attack on a network that is designed to bring
the network / service d...
6
INCREASING COMPLEXITY
PAST
Infrastructure:
• IP Flooding
• TCP Flooding
• UDP Flooding
• ICMP Flooding
• Ping of Death
P...
7
ERA OF DDoS ATTACKS
01
02 03
04
Increasing at over
200% year over year
Over 2000 attacks
are reported daily
Cost $150 to...
Reputation Loss
Revenue Loss
Productivity Loss
Service Outage
Inability to meet
SLAs
8
9
50
45
36
33 31
3
Threat Ranking
What organizations feel about various cyber threats.
DDoS Unauthorized Access
Worms & Vi...
10
WHY CAN’T FIREWALL / IPS HANDLE DDoS ATTACKS?
As stateful devices, firewalls and IPS track all connections for inspecti...
11
Network Bottleneck
36
28
21
10
3 2
0
20
40
a b c d e f
Internet Pipe Application Server
Firewall IPS / IDS
Load Balance...
HALTDOS
360° Security
All round protection from simple to
sophisticated zero day DDoS attacks
Always Learning
Self adaptin...
Multi-layer Security
Our multi layer mitigation provides
the widest range of protection to
application servers with minimu...
14
HALTDOS FACTOR
NO HUMAN POLICY
"Hands-off" solution with self-learning
capability that adapts to changing network
condi...
No stopping your Application
RIDE THE HIGHWAY
Upcoming SlideShare
Loading in …5
×

HaltDos DDoS Protection Solution

231 views

Published on

HaltDos is a high throughput, high performance software based network appliance that can stay updated with evolving technology and threats without requiring hardware replacements. With its multi-layered and multi-vector approach, it can defend against a wide range of DDoS attacks within seconds to ensure high uptime of your website/web services.

Published in: Technology
  • Be the first to comment

  • Be the first to like this

HaltDos DDoS Protection Solution

  1. 1. Helping you stay online… Always
  2. 2. CONTENTS TABLE OF 01 02 03 04 05 INTRODUCTION ERA OF DDoS ATTACKS FIREWALLS NOT ENOUGH HALTDOS SOLUTION DIFFERENTIATING FACTOR
  3. 3. HALTDOS ABOUT RIDE THE HIGHWAY WITH HALTDOS Amidst fierce competition, your business cannot afford to slow down. With haltDos, you don't have to sacrifice productivity and performance to get leading-edge security. Our multi-layered, multi- vector protection ensures that your website stays online and always accessible to your customers. HaltDos is an Indian based Network Security startup providing security solution to its customers. Its flagship product, haltDos, is India’s first comprehensive DDoS mitigation solution. Our Expertise  DDoS Mitigation Solution  Application Delivery  Load Balancing & Proxy  Application Firewall
  4. 4. 4 CO-FOUNDERS Anshul Saxena • CTO of AKS IT Services Pvt. Ltd. • MS Information Security, Georgia Institute of Technology • Security Developer at Amazon (AWS Cloud Front) • Software Developer at Microsoft Wg. Cdr. Ashish K. Saxena • MD of AKS IT Services Pvt. Ltd. • M. Tech, IIT Delhi • CISSP, CISA • 37 years of work ex. in Indian Air Force • 10 years experience in running a successful security company
  5. 5. 5 DDoS Short for Denial of Service, DoS is a type of attack on a network that is designed to bring the network / service down to its knees by flooding it with useless traffic IT NETWORKING
  6. 6. 6 INCREASING COMPLEXITY PAST Infrastructure: • IP Flooding • TCP Flooding • UDP Flooding • ICMP Flooding • Ping of Death PRESENT Infrastructure: • IP Flooding • TCP Flooding • UDP Flooding • ICMP Flooding • DNS Flooding • DNS Query Flood Protocol: • TCP SYN Flood • TCP ACK Flood • Zombie Flood • SSL based attacks • Corrupted SSL Flood Application: • HTTP GET/POST Flood • SIP Flood • Slowloris • R.U.D.Y. Reflection/Amplification: •NTP Flood •SNMP Flood •DNS Reflection
  7. 7. 7 ERA OF DDoS ATTACKS 01 02 03 04 Increasing at over 200% year over year Over 2000 attacks are reported daily Cost $150 to launch a week long DDoS attack Cause over $40,000 / hr in losses to the victim
  8. 8. Reputation Loss Revenue Loss Productivity Loss Service Outage Inability to meet SLAs 8
  9. 9. 9 50 45 36 33 31 3 Threat Ranking What organizations feel about various cyber threats. DDoS Unauthorized Access Worms & Virus Phishing Fraud Other
  10. 10. 10 WHY CAN’T FIREWALL / IPS HANDLE DDoS ATTACKS? As stateful devices, firewalls and IPS track all connections for inspection and store them in a connection table. Every packet is matched against the connection table to verify that it was transmitted over an established, legitimate connection. The typical connection table can store tens of thousands of active connections, which is sufficient for normal network activity. However, a DDoS attack may include millions of packets per second. Firewalls and IPS only examine individual sessions. DDoS attacks such as HTTP floods, are composed of millions of legitimate sessions. Each session on its own is legitimate and it cannot be marked as a threat by firewalls and IPS.
  11. 11. 11 Network Bottleneck 36 28 21 10 3 2 0 20 40 a b c d e f Internet Pipe Application Server Firewall IPS / IDS Load Balancer SQL Server
  12. 12. HALTDOS 360° Security All round protection from simple to sophisticated zero day DDoS attacks Always Learning Self adapting and configuring solution requiring no human intervention Real-Time Metrics Audit report on Attack, application health, customer interaction and more Customizable 100% customizable with on the fly updates. Easy to scale and takes no more than a few minutes to setup
  13. 13. Multi-layer Security Our multi layer mitigation provides the widest range of protection to application servers with minimum human intervention and zero false positives. No Rules, No Signature HaltDos is an anomaly detection and mitigation system and does not rely on attack signatures. This makes it harder for attackers to bypass as there are no rules to break. Update, not Upgrade HaltDos is 100% software running on custom configured hardware. This makes it extremely flexible to update to newer technologies without needing to upgrade the hardware PACKET INSPECTION Validating incoming packets with compliance to RFC standards ENTROPY MITIGATION Using entropy change detection to detect and mitigate DDoS BEHAVIORAL MITIGATION Detects malicious interaction with the system HEURISTIC MITIGATION Computes suspicion based on 30+ different attributes 21 3 4 5 PRIORITY TRAFFIC SHAPING Prioritize traffic and forward least suspicious traffic first
  14. 14. 14 HALTDOS FACTOR NO HUMAN POLICY "Hands-off" solution with self-learning capability that adapts to changing network conditions and requires minimal tuning REDUCED TCO Multiple security tools in a single box. Single console to manage multiple units. 01 02 MAINTAINS BUSINESS OPERATIONAL Attack or no attack, HaltDos ensures your business stays operational all the time. 03 ACCURATE ATTACK PREVENTION Stateless DDoS appliance providing best in class attack detection and mitigation in the most demanding operational environments 04
  15. 15. No stopping your Application RIDE THE HIGHWAY

×