Helping you stay online… Always

CONTENTSTABLE OF

01

02

03

04

05

INTRODUCTION

ERA OF DDoS ATTACKS

FIREWALLS NOT ENOUGH

HALTDOS SOLUTION

DIFFERENTIATING FACTOR

HALTDOSABOUT

RIDE THE HIGHWAY WITH HALTDOS

Amidst fierce competition, your business cannot

afford to slow down. With haltDos, you don't have

to sacrifice productivity and performance to get

leading-edge security. Our multi-layered, multi-

vector protection ensures that your website stays

online and always accessible to your customers.

HaltDos is an Indian based Network Security startup

providing security solution to its customers. Its flagship

product, haltDos, is India’s first comprehensive DDoS

mitigation solution.

Our Expertise

DDoS Mitigation Solution

Application Delivery

Load Balancing & Proxy

Application Firewall

4

CO-FOUNDERS

Anshul Saxena

• CTO of AKS IT Services Pvt. Ltd.

• MS Information Security, Georgia

Institute of Technology

• Security Developer at Amazon (AWS

Cloud Front)

• Software Developer at Microsoft

Wg. Cdr. Ashish K. Saxena

• MD of AKS IT Services Pvt. Ltd.

• M. Tech, IIT Delhi

• CISSP, CISA

• 37 years of work ex. in Indian Air Force

• 10 years experience in running a

successful security company

5

DDoSShort for Denial of Service, DoS is a type of

attack on a network that is designed to bring

the network / service down to its knees by

flooding it with useless traffic

ITNETWORKING

6

INCREASING COMPLEXITY

PAST

Infrastructure:

• IP Flooding• TCP Flooding• UDP Flooding• ICMP Flooding• Ping of Death

PRESENT

Infrastructure:• IP Flooding• TCP Flooding• UDP Flooding• ICMP Flooding• DNS Flooding• DNS Query Flood

Protocol:• TCP SYN Flood • TCP ACK Flood• Zombie Flood• SSL based attacks• Corrupted SSL Flood

Application:• HTTP GET/POST Flood• SIP Flood• Slowloris• R.U.D.Y.

Reflection/Amplification:•NTP Flood•SNMP Flood•DNS Reflection

7

ERA OF DDoS ATTACKS

01

02 03

04Increasing at over 200% year over year

Over 2000 attacks are reported daily

Cost $150 to launch aweek long DDoS attack

Cause over $40,000 / hrin losses to the victim

Reputation Loss

Revenue LossProductivity Loss

Service Outage

Inability to meetSLAs

8

9

5045

36 33 31

3

Threat RankingWhat organizations feel about various cyber threats.

DDoS Unauthorized Access

Worms & Virus Phishing

Fraud Other

10

WHY CAN’T FIREWALL / IPS HANDLE DDoS ATTACKS?

As stateful devices, firewalls and IPS track all connections for inspection and store them in a

connection table. Every packet is matched against the connection table to verify that it was

transmitted over an established, legitimate connection. The typical connection table can store tens

of thousands of active connections, which is sufficient for normal network activity. However, a DDoS

attack may include millions of packets per second.

Firewalls and IPS only examine individual sessions. DDoS attacks such as HTTP floods, are

composed of millions of legitimate sessions. Each session on its own is legitimate and it cannot be

marked as a threat by firewalls and IPS.

11

Network Bottleneck

36

28

21

10

3 2

0

20

40

a b c d e f

Internet Pipe Application Server

Firewall IPS / IDS

Load Balancer SQL Server

HALTDOS

360° SecurityAll round protection from simple to sophisticated zero day DDoS attacks

Always LearningSelf adapting and configuring solution requiring no human intervention

Real-Time MetricsAudit report on Attack, application health, customer interaction and more

Customizable100% customizable with on the fly updates. Easy to scale and takes no more than a few minutes to setup

Multi-layer SecurityOur multi layer mitigation providesthe widest range of protection toapplication servers with minimumhuman intervention and zero falsepositives.

No Rules, No SignatureHaltDos is an anomaly detection andmitigation system and does not relyon attack signatures. This makes itharder for attackers to bypass asthere are no rules to break.

Update, not UpgradeHaltDos is 100% software running oncustom configured hardware. Thismakes it extremely flexible to updateto newer technologies withoutneeding to upgrade the hardware

PACKET INSPECTION

Validating incoming packets with compliance

to RFC standards

ENTROPY MITIGATION

Using entropy change detection to detect and

mitigate DDoS

BEHAVIORAL MITIGATION

Detects malicious interaction with the

system

HEURISTIC MITIGATION

Computes suspicion based on 30+ different

attributes

21 3 4 5

PRIORITY TRAFFIC SHAPING

Prioritize traffic and forward least suspicious

traffic first

14

HALTDOS FACTOR

NO HUMAN POLICY"Hands-off" solution with self-learning capability that adapts to changing network conditions and requires minimal tuning

REDUCED TCOMultiple security tools in a single box.

Single console to manage multiple units.

0102

MAINTAINS BUSINESS OPERATIONAL

Attack or no attack, HaltDos ensures your business stays

operational all the time.

03ACCURATE ATTACK PREVENTIONStateless DDoS appliance providing best in class attack detection and mitigation in the most demanding operational environments

04

No stopping your ApplicationRIDE THE HIGHWAY