Radware DefenseFlowThe SDN Application ThatPrograms Networks forDoS SecuritySales PresentationApril 2013
• DDoS Threat is Evolving• Limitations of Legacy Out-Of-Path  Deployments• Radware DefenseFlow Solution• Summary
US Banks Under Attack: From The News                                  3
Anonymous Attacks Grow                    Industry Security SurveyWhich of the following motivation(s) are behind the DDoS...
Ponemon Research 2012:         DDoS Attacks are Mainstreamof organizations had an average of 3DDoS attacks in the past 12 ...
Limitations of Netflow Based Mitigation                                                              Netflow Based        ...
Introducing Radware DefenseFlow                                   The SDN Application ThatSDN Applications                ...
DefenseFlow: The SDN Application That Programs                                          Networks for DoS Security         ...
DefenseFlow Vs. Netflow                                            Netflow Based    Radware                        Capabil...
Operator Benefits• Designed for attack mitigation   – Attack detection is performed out of path   – During attack period o...
Summary• DDoS attacks are prevalent threat to  every business and agency• Current Netflow based solutions fail to  offer c...
Thank Youwww.radware.com
Upcoming SlideShare
Loading in …5
×

Radware DefenseFlow-The SDN Application That Programs Networks for DoS Security

1,532 views

Published on

http://www.radware.com/Products/DefenseFlow/
Learn about the industry's first SDN application that enables network operators to program the network to provide DDoS protection as a native network service.

Published in: Technology, News & Politics
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
1,532
On SlideShare
0
From Embeds
0
Number of Embeds
34
Actions
Shares
0
Downloads
74
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide
  • Source: Cyber Security on the Offense:A Study of IT Security ExpertsCo-authored with RadwareIndependently conducted by Ponemon Institute LLCPublication Date: November 2012
  • Radware DefenseFlow-The SDN Application That Programs Networks for DoS Security

    1. 1. Radware DefenseFlowThe SDN Application ThatPrograms Networks forDoS SecuritySales PresentationApril 2013
    2. 2. • DDoS Threat is Evolving• Limitations of Legacy Out-Of-Path Deployments• Radware DefenseFlow Solution• Summary
    3. 3. US Banks Under Attack: From The News 3
    4. 4. Anonymous Attacks Grow Industry Security SurveyWhich of the following motivation(s) are behind the DDoS/DoS attacks that you experienced? Ransoms Competition 5% 6% Angry users 10% Motivation is unknown Political/Hacktivism 57% 22% 4
    5. 5. Ponemon Research 2012: DDoS Attacks are Mainstreamof organizations had an average of 3DDoS attacks in the past 12 monthsMinutes average downtime during oneDDoS attackAverage cost per minute of downtimeAverage annual cost of DDoS attacks 5
    6. 6. Limitations of Netflow Based Mitigation Netflow Based Capability Mitigation Detection Network DDoS flood attacks Full coverage Mitigation Mitigation response time Slow – 5 Minutes Requires BGP announcement, GRE SlowNetwork Operation Complicated tunneling and several detectors Complicated Diversion Traffic granularity Low Granularity Inaccurate Requires hardware detectors Cost Effective Requires scrubbing center Expensive Expensive Consumes routers CPU and ports 6
    7. 7. Introducing Radware DefenseFlow The SDN Application ThatSDN Applications Programs Networks for DDoS Protection API SDN Controller Controller OpenFlow APISDN Data Plane DefensePro 7
    8. 8. DefenseFlow: The SDN Application That Programs Networks for DoS Security Configure DefensePro Security Service with learned baselines Attack!!! Create baselines per: provisioning IP Address, Protocol & Programmable Service (Port) Probe – Collect DetectionAnalyze & Decide “Flow Diversion” SDN Controller - Control Internet DefensePro Slide 8
    9. 9. DefenseFlow Vs. Netflow Netflow Based Radware Capability Mitigation DefenseFlowDetection Network DDoS flood attacks Full coverage Full Coverage Mitigation response time Immediate –Mitigation Slow – 5 Min seconds Requires BGP announcement, Simple - Network GRE tunneling and several Slow Complicated diversion is aOperation detectors Complicated network service Inaccurate High GranularityDiversion Traffic granularity Low Granularity – divert only Expensive suspicious traffic Requires hardware detectors Cost Requires scrubbing center Expensive Low cost Effective Consumes routers CPU and ports 9
    10. 10. Operator Benefits• Designed for attack mitigation – Attack detection is performed out of path – During attack period only suspicious traffic is diverted through mitigation device• Scalable solution – DefensePro mitigation devices can be placed in any location – DefenseFlow diverts the traffic to the nearest mitigation device• Easy provisioning – Adding protection policy to a customer in a few seconds• Lowest cost solution – Detection as a native SDN stats collection – Diversion as a native SDN control operation 10
    11. 11. Summary• DDoS attacks are prevalent threat to every business and agency• Current Netflow based solutions fail to offer cost effective solution• DefenseFlow is a SDN application that programs networks for DDoS Protection, gaining: – Easy provisioning – Immediate attack detection – Low cost 11
    12. 12. Thank Youwww.radware.com

    ×