HaltDos DDoS Protection Solution
-
Upload
haltdos -
Category
Technology
-
view
65 -
download
4
Transcript of HaltDos DDoS Protection Solution
CONTENTSTABLE OF
01
02
03
04
05
INTRODUCTION
ERA OF DDoS ATTACKS
FIREWALLS NOT ENOUGH
HALTDOS SOLUTION
DIFFERENTIATING FACTOR
HALTDOSABOUT
RIDE THE HIGHWAY WITH HALTDOS
Amidst fierce competition, your business cannot
afford to slow down. With haltDos, you don't have
to sacrifice productivity and performance to get
leading-edge security. Our multi-layered, multi-
vector protection ensures that your website stays
online and always accessible to your customers.
HaltDos is an Indian based Network Security startup
providing security solution to its customers. Its flagship
product, haltDos, is India’s first comprehensive DDoS
mitigation solution.
Our Expertise
DDoS Mitigation Solution
Application Delivery
Load Balancing & Proxy
Application Firewall
4
CO-FOUNDERS
Anshul Saxena
• CTO of AKS IT Services Pvt. Ltd.
• MS Information Security, Georgia
Institute of Technology
• Security Developer at Amazon (AWS
Cloud Front)
• Software Developer at Microsoft
Wg. Cdr. Ashish K. Saxena
• MD of AKS IT Services Pvt. Ltd.
• M. Tech, IIT Delhi
• CISSP, CISA
• 37 years of work ex. in Indian Air Force
• 10 years experience in running a
successful security company
5
DDoSShort for Denial of Service, DoS is a type of
attack on a network that is designed to bring
the network / service down to its knees by
flooding it with useless traffic
ITNETWORKING
6
INCREASING COMPLEXITY
PAST
Infrastructure:
• IP Flooding• TCP Flooding• UDP Flooding• ICMP Flooding• Ping of Death
PRESENT
Infrastructure:• IP Flooding• TCP Flooding• UDP Flooding• ICMP Flooding• DNS Flooding• DNS Query Flood
Protocol:• TCP SYN Flood • TCP ACK Flood• Zombie Flood• SSL based attacks• Corrupted SSL Flood
Application:• HTTP GET/POST Flood• SIP Flood• Slowloris• R.U.D.Y.
Reflection/Amplification:•NTP Flood•SNMP Flood•DNS Reflection
7
ERA OF DDoS ATTACKS
01
02 03
04Increasing at over 200% year over year
Over 2000 attacks are reported daily
Cost $150 to launch aweek long DDoS attack
Cause over $40,000 / hrin losses to the victim
9
5045
36 33 31
3
Threat RankingWhat organizations feel about various cyber threats.
DDoS Unauthorized Access
Worms & Virus Phishing
Fraud Other
10
WHY CAN’T FIREWALL / IPS HANDLE DDoS ATTACKS?
As stateful devices, firewalls and IPS track all connections for inspection and store them in a
connection table. Every packet is matched against the connection table to verify that it was
transmitted over an established, legitimate connection. The typical connection table can store tens
of thousands of active connections, which is sufficient for normal network activity. However, a DDoS
attack may include millions of packets per second.
Firewalls and IPS only examine individual sessions. DDoS attacks such as HTTP floods, are
composed of millions of legitimate sessions. Each session on its own is legitimate and it cannot be
marked as a threat by firewalls and IPS.
11
Network Bottleneck
36
28
21
10
3 2
0
20
40
a b c d e f
Internet Pipe Application Server
Firewall IPS / IDS
Load Balancer SQL Server
HALTDOS
360° SecurityAll round protection from simple to sophisticated zero day DDoS attacks
Always LearningSelf adapting and configuring solution requiring no human intervention
Real-Time MetricsAudit report on Attack, application health, customer interaction and more
Customizable100% customizable with on the fly updates. Easy to scale and takes no more than a few minutes to setup
Multi-layer SecurityOur multi layer mitigation providesthe widest range of protection toapplication servers with minimumhuman intervention and zero falsepositives.
No Rules, No SignatureHaltDos is an anomaly detection andmitigation system and does not relyon attack signatures. This makes itharder for attackers to bypass asthere are no rules to break.
Update, not UpgradeHaltDos is 100% software running oncustom configured hardware. Thismakes it extremely flexible to updateto newer technologies withoutneeding to upgrade the hardware
PACKET INSPECTION
Validating incoming packets with compliance
to RFC standards
ENTROPY MITIGATION
Using entropy change detection to detect and
mitigate DDoS
BEHAVIORAL MITIGATION
Detects malicious interaction with the
system
HEURISTIC MITIGATION
Computes suspicion based on 30+ different
attributes
21 3 4 5
PRIORITY TRAFFIC SHAPING
Prioritize traffic and forward least suspicious
traffic first
14
HALTDOS FACTOR
NO HUMAN POLICY"Hands-off" solution with self-learning capability that adapts to changing network conditions and requires minimal tuning
REDUCED TCOMultiple security tools in a single box.
Single console to manage multiple units.
0102
MAINTAINS BUSINESS OPERATIONAL
Attack or no attack, HaltDos ensures your business stays
operational all the time.
03ACCURATE ATTACK PREVENTIONStateless DDoS appliance providing best in class attack detection and mitigation in the most demanding operational environments
04