Related Links

Radware® a provider of cyber security and application delivery solutions, announces that its SSL DDoS attack protection, DefenseSSL®, now features behavioral-based algorithms for keyless protection against HTTPS flood attacks. For the first time, organizations have the scale needed to effectively mitigate HTTPS floods.

According to Google, the majority of internet traffic is now encrypted and accounts for more than 70% of internet pages. While SSL/TLS encryption is critical for many aspects of security, it also opens the door to a new generation of powerful distributed denial-of-service (DDoS) attacks.

Simplifying key management

SSL/TLS connections require up to 15 times more resources from the destination server than of the requesting host, meaning that threat actors can launch devastating DDoS attacks using only a relatively small number of connections. Radware’s keyless DDoS mitigation solution now makes it possible to protect from SSL-based HTTP DDoS attacks at scale without adding latency to customer communications, and while preserving user privacy and simplifying key management.

Service providers and carriers serve many tenants on their network and provide them with cyber-attack protections

Service providers and carriers serve many tenants on their network and provide them with cyber-attack protections. Due to their own security policies, network tenants cannot provide their decryption keys to the service provider’s or carrier’s network administrators, which leaves the providers or carriers vulnerable to HTTPS flood attacks. With no decryption capabilities, service providers and carriers are left with no effective solution to provide HTTPS flood protection to their tenants.

Managing decryption keys

Radware’s Chief Marketing officer, Anna Convery-Pelletier, said, “Our new DefenseSSL capabilities support carriers and service providers in protecting themselves and their customers against HTTPS flood attacks even when they don’t have access to their tenants’ decryption keys. This unique capability eliminates the massive operational complexity that comes with managing decryption keys. Further, with this solution, enterprises have the flexibility to opt for the most suitable protection to match their needs. Enterprises that have access to decryption keys can still choose to use those keys to decrypt suspected traffic and increase the accuracy of their mitigation.”

Radware’s solution for keyless protection against HTTPS flood attacks is based on a stateless architecture. Traditional solutions are stateful and thus themselves vulnerable to DDoS attacks. With advanced behavioral algorithms and the combination of rate-based and non-rate-based parameters, Radware can identify DDoS attacks over encrypted traffic, even without inspection of the traffic’s content. Radware’s DefenseSSL functionality is currently available across its DefensePro advanced protection product suite.

Download PDF version Download PDF version

Related videos

OPTEX REDSCAN Mini Series Protects The Londoner Hotel

OPTEX REDSCAN Mini Series Protects The Londoner Hotel
Upgraded Feature For Xesar - Now With Smartphone As Well!

Upgraded Feature For Xesar - Now With Smartphone As Well!
Enhancing Government Security With Proactive Threat Detection From Wavestore

Enhancing Government Security With Proactive Threat Detection From Wavestore

In case you missed it

Luxury Londoner Hotel Secured By OPTEX Laser Sensors
Luxury Londoner Hotel Secured By OPTEX Laser Sensors

OPTEX, the pioneering global sensing manufacturer, has specified and installed its compact and intelligent REDSCAN RLS-2020 LiDAR laser sensors at the new luxury five-star Londoner...

ASSA ABLOY eCLIQ: Secure Access At Hofbräuhaus Munich
ASSA ABLOY eCLIQ: Secure Access At Hofbräuhaus Munich

Munich’s Hofbräuhaus enjoys an iconic status, as both a heritage property and a spiritual home for lovers of German beer. “In this historic building is the world&r...

How Should Total Cost of Ownership (TCO) Impact Security Decisions?
How Should Total Cost of Ownership (TCO) Impact Security Decisions?

Direct costs such as purchase price and maintenance are important elements in the total cost of ownership (TCO). However, there are others. Elements such as opportunity costs of lo...

Featured white papers
The Security Challenges Of Data Centers

The Security Challenges Of Data Centers

Download
Security Practices For Hotels

Security Practices For Hotels

Download
Access Control System Planning Phase 2

Access Control System Planning Phase 2

Download
SIA Identity and Biometrics Symposium

SIA Identity and Biometrics Symposium

Download
Gunshot Detection

Gunshot Detection

Download
More product news
Ontic Technologies Offer Proactive Protection That Leverages Deep Analytics And Intelligence To Secure Enterprises

Ontic Technologies Offer Proactive Protection That Leverages Deep Analytics And Intelligence To Secure Enterprises
Northrop Grumman To Showcase Firebird Products At Royal International Air Tattoo Event

Northrop Grumman To Showcase Firebird Products At Royal International Air Tattoo Event
Johnson Controls' exacqVision Integrated With MASterMind Software For Video Verification And Alerts

Johnson Controls' exacqVision Integrated With MASterMind Software For Video Verification And Alerts
Featured products
ASSA ABLOY Aperio P100 Padlock

ASSA ABLOY Aperio P100 Padlock
Climax Technology TouchPanel-3

Climax Technology TouchPanel-3
ASSA ABLOY eCLIQ Electronic Key For Enhanced Building Security

ASSA ABLOY eCLIQ Electronic Key For Enhanced Building Security