Re-writing the Playbook for DDoS Mitigation Strategies

Slides:



Advertisements
Similar presentations
Unified Logs and Reporting for Hybrid Centralized Management
Advertisements

With the Help of the Microsoft Azure Platform, Devbridge Group Provides Powerful, Flexible, and Scalable Responsive Web Solutions MICROSOFT AZURE ISV PROFILE:
Alert Logic Provides a Fully Managed Security and Compliance Solution Based in the Cloud, Powered by the Robust Microsoft Azure Platform MICROSOFT AZURE.
Accumulus Delivers Enterprise Class Subscription Billing and Automation Solutions for Gaming, Retail, and More on the Scalable Microsoft Azure Platform.
Gaining Unprecedented Visibility into Microsoft Dynamics CRM with Halo’s Pipeline Advisor, Powered by the Microsoft Azure Cloud Platform MICROSOFT AZURE.
+ Logentries Is a Real-Time Log Analytics Service for Aggregating, Analyzing, and Alerting on Log Data from Microsoft Azure Apps and Systems MICROSOFT.
DenyAll Delivering Next-Generation Application Security to the Microsoft Azure Platform to Secure Cloud-Based and Hybrid Application Deployments MICROSOFT.
Saasabi’s Analytical Processing Engine in the Cloud Makes Business Intelligence Affordable for Everyone COMPANY PROFILE: Saasabi Saasabi is a BizSpark.
Microsoft Azure and ServiceNow: Extending IT Best Practices to the Microsoft Cloud to Give Enterprises Total Control of Their Infrastructure MICROSOFT.
MICROSOFT AZURE APP BUILDER PROFILE: RAVERUS LTD. Raverus is a customer-driven company engaged in providing software applications designed to improve and.
Corero DDoS Protection for your Network and Services Bipin Mistry VP Product Management.
Cloud Agility with Performance Bridging the Performance Gap for Virtual Network Infrastructure Paul Andersen Sr. Marketing Director.
The Derivitec Risk Portal Provides Powerful, Cost-Effective Risk Management Solutions, Powered by Azure, that Deploy in Minutes MICROSOFT AZURE ISV PROFILE:
Your Lack Of Visibility And Control Is Hurting Your Business Kyle York Chief Strategy Officer,
Barracuda NG Firewall ™
Device Maintenance and Management, Parental Control, and Theft Protection for Home Users Made Easy with Remo MORE and Power of Azure MICROSOFT AZURE APP.
Avenues International Inc.
COMPANY PROFILE: CORENT TECHNOLOGY INC.
Cloud University Live: 8 Steps to Build Your Cloud Go to Market Plan
BLoyal Version 4: Real-Time, Omnichannel Loyalty and Engagement Solution Has Been Redesigned and Rebuilt on the Microsoft Azure Cloud Platform MICROSOFT.
Barracuda Web Security Flex
Built on Microsoft Azure, 11Ants Retail Analytics Customer Science Solution Delivers Real Growth Opportunities to Retailers with Loyalty Programs MICROSOFT.
Barracuda Networks Creates Next-Generation Security Solutions That Enable Customers to Accelerate Their Adoption of Microsoft Azure MICROSOFT AZURE APP.
Hybrid Management and Security
Connect Your Apps and Automate Your Business: OneSaas on Microsoft Azure Empowers SMBs to Save Time and Make Better Business Decisions MICROSOFT AZURE.
Ralleo Enterprise-Grade Solution for Managing Change and Business Transformation Provides Opportunities to Better Analyze Real-Time Data MICROSOFT AZURE.
Real-time protection for web sites and web apps against ATTACKS
New Heights by Guiding Them into the Cloud
Gather Valuable Customer Data
NeoFirma Taps into the Microsoft Azure Cloud Platform to Deliver Digital Oilfield SaaS to North American Independent Oil and Gas Producers MICROSOFT AZURE.
A10 Networks vThunder Leverages the Powerful Microsoft Azure Cloud Platform to Offer Advanced Layer 4-7 Networking, Security on a Global Scale MICROSOFT.
How Smart Networks are Changing Corporate Networks
IreckonU Offers a Powerful Hospitality Software Solution, Seamlessly Integrating Existing Hospitality Systems and Services on the Powerful Microsoft Azure.
Hosted on Azure, LoginRadius’ Customer Identity
Nimble Streamer Helps Media Content Providers Create Streaming Networks Cost-Effectively and Easily by Utilizing Azure’s Worldwide Scalability MICROSOFT.
Veeam Backup Repository
SmartHOTEL Solutions Powered by Microsoft Azure Provide Hoteliers with Comprehensive, One-Stop Automated Management of All Booking Channels MICROSOFT AZURE.
With Help from the Microsoft Azure Cloud,
Built on the Powerful Microsoft Azure Platform, Lievestro Delivers Care Information, Capacity Management Solutions to Hospitals, Medical Field MICROSOFT.
Running on the Powerful Microsoft Azure Platform,
Is Your Online Security Intelligent? Internet Performance Management
Logsign All-In-One Security Information and Event Management (SIEM) Solution Built on Azure Improves Security & Business Continuity MICROSOFT AZURE APP.
Partner Logo Reblaze Utilizes Microsoft Azure Cloud Technology to Provide Web Assets with a Comprehensive, Robust, Protective Shield Against Internet Threats.
Immersive, Hands-On Learning: The KNOLSKAPE Gamified Learning and Assessment Apps Built on Azure Transform Your Talent, Make Learning Fun MICROSOFT AZURE.
Big Red Cloud Offers a Simple Online Accounts Solution for Business Owners and Bookkeepers Hosted on the Powerful Microsoft Azure Platform MICROSOFT AZURE.
The Only Digital Asset Management System on Microsoft Azure, MediaValet Is Uniquely Equipped to Meet Any Company’s Needs MICROSOFT AZURE ISV PROFILE: MEDIAVALET.
Myday by Collabco: a Revolutionary Student Portal Built with Office 365 and Anglular.js, and Hosted on the Microsoft Azure Platform MICROSOFT AZURE APP.
DeFacto Planning on the Powerful Microsoft Azure Platform Puts the Power of Intelligent and Timely Planning at Any Business Manager’s Fingertips Partner.
MyCloudIT Enables Partners to Drive Their Cloud Profitability Using CSP-Enabled Desktop Hosting Automation with Microsoft Azure and Office 365 MICROSOFT.
Built on the Powerful Microsoft Azure Platform, the SiouxApp “Project-Server” Helps to Manage Projects and More with App Enhancement Tools MICROSOFT AZURE.
Partner Logo Azure Provides a Secure, Scalable Platform for ScheduleMe, an App That Enables Easy Meeting Scheduling with People Outside of Your Company.
Datacastle RED Delivers a Proven, Enterprise-Class Endpoint Data Protection Solution that Is Scalable to Millions of Devices on the Microsoft Azure Platform.
Crypteron is a Developer-Friendly Data Breach Solution that Allows Organizations to Secure Applications on Microsoft Azure in Just Minutes MICROSOFT AZURE.
MARMIND’s New Service Delivers a Single Centralized Marketing Plan That Connects Teams, Campaigns and Outcomes by Using the Power of the Azure Platform.
Who We Are – Brief History
Carl Data Solutions Collects Utility Sensor and Meter Data to Provide Advanced Reporting, Alarming, and Analytics with Microsoft Azure MICROSOFT AZURE.
TruRating: Mass Point-of-Payment Customer Rating System Uses the Power of Microsoft Azure to Store and Analyze Millions of Ratings for Business Owners.
Adra ACCOUNTS: Transaction Matching Software Powered by the Microsoft Azure Cloud That Helps Optimize the Accounting and Finance Processes MICROSOFT AZURE.
AdQ is Azure-Powered Pre-Roll Ad Management Software That Improves Pre-Roll Ad Performance, Increases Profits, and Optimizes User Experience MICROSOFT.
Protect Your Microsoft Azure Cloud Assets Against Inside and Outside Threats With Balabit’s Shell Control Box Privileged User Monitoring Solution Partner.
TEMPLATE.
Cloud Analytics for Microsoft Azure
Gantt Chart Enter Year Here Activities Jan Feb Mar Apr May Jun Jul Aug
AIMS for BizTalk, Built on the Microsoft Azure Platform, Empowers Enterprises to Automate Insight and Analytics and Boost Value Creation MICROSOFT AZURE.
Quasardb Is a Fast, Reliable, and Highly Scalable Application Database, Built on Microsoft Azure and Designed Not to Buckle Under Demand MICROSOFT AZURE.
Guarantee Hyper-V, System Center Performance and Autoscale to Microsoft Azure with Application Performance Control System from VMTurbo MICROSOFT AZURE.
Terabit Scale Edge DDoS Protection
Large-Scale Edge DDoS Protection
Zendos Tecnologia Utilizes the Powerful, Scalable
Calidad de Conducción y Seguridad Vial
Presentation transcript:

Re-writing the Playbook for DDoS Mitigation Strategies Dave Larson, COO Corero Network Security

No Pitch Presentation Policy Please help us produce more relevant content in the future by rating this session using our event app! Each presenter signs a speaker agreement certifying that their presentation will be educational and not a sales pitch. Attendees have a right to report speakers not adhering to the policy.

DDoS Attacks – 2015 Snapshot Total Attack Bandwidth Gbps Data shown represents the top ~2% of reported attacks JAN 2015 DEC 2014 MAR 2015 DEC 2015 JUN 2015 DD4BC (Banks) SEP 2015 400 300 200 100 DEC 1 2014 JAN 1 2015 FEB 1 MAR 1 APR 1 MAY 1 JUN 1 JUL 1 AUG 1 SEP 1 OCT 1 NOV 1 DEC 1 AUG 2015 OCT 2015 $1.5m per annum is the average cost to deal with DDoS attacks 82% Of companies reported DDoS attacks shut down or partially shut down their data centers 49% of companies expect DDoS attacks to increase in next 12 months Source: Ponemon Institute – Cost of DDoS Attacks – March 2015 Source: Digital Attack Map - DDoS attacks around the globe

The Problem is Real – and Pervasive Our average customer sees almost 4.5 attacks per day! Some customers see many more Across all verticals and segments No one is immune!

Increase in Low Bandwidth, Short Duration Attacks

Evolution of DDoS Defense

DDoS Defense 1.0 - Null Route DDoS Detection (NetFlow Collector/Analyzer) NetFlow Native Traffic Path Attack Traffic Non-Attack Traffic Null Route on Destination IP Unprotected Customer All traffic discarded © 2016 Corero www.corero.com

DDoS Defense 2.0 - Scrubbing DDoS Detection (NetFlow Collector/Analyzer) NetFlow Native Traffic Path Attack Traffic Non-Attack Traffic Non-Attack Traffic New Route via BGP Diverted Traffic Path GRE Tunnel to Customer Partially Protected Customers TMS Industry Leader’s Scrubbing Approach

DDoS Defense 3.0 - Inline, Always-On Comprehensive DDoS Analytics Real-time Alerting and Reporting Attack Traffic Non-Attack Traffic Non-Attack Traffic DDoS Traffic Blocked Inline Completely Protected Customers

DDoS Defense 3.0 - Subscriber Edge Deployment Comprehensive DDoS Analytics Real-time Alerting and Reporting Completely Protected ISP, Hosting, and Enterprise Customers Attack Traffic Non-Attack Traffic Non-Attack Traffic DDoS Traffic Blocked at Subscriber Edge

Automatic Mitigation In-line, automatic mitigation protecting >200Gbps of Internet bandwidth

Hosting Provider Challenge & Opportunity

Typical Subscriber Protection Many enterprises take advantage of more than one defense technique: Current Mitigation Techniques (multi-select) Response Percent On-Premises DDoS mitigation product 26.7% Cloud based scrubbing technology or service 11.1% Home grown or Open Source solutions 16.7% Traditional security infrastructure products (firewall, IPS, load balancers) 68.9% Rely on upstream service providers to eliminate the attacks Survey conducted in August/September 2015. Survey respondents are network and network security representatives that represent cross industry, global organizations.

Subscribers are Demanding More 74% of respondents would like to see their provider implement additional services to eliminate DDoS traffic from entering their networks. 52% indicate that they would even pay for a premium service offering to eliminate the DDoS challenge to their environment. ISP provide additional security services to eliminate DDoS Response Percent Yes 74.4% No 6.7% Unsure 18.9% Would you pay your ISP for a premium service that removes DDoS attack traffic before it is delivered to you? Response Percent Yes 52.2% No 14.4% Unsure 33.3%

The Opportunity 90% of respondents indicate that they would be willing to pay for a premium DDoS defense offering from their provider and a majority would be willing to allocate from 5% to 10% of their overall ISP spend to secure that service. What percentage increase of your current provider spend would you allocate to subscribe to this type of service? Response Percent Less than 5% 39.0% 5%-10% 50.6% 10-25% 2.6% More 1.3% © 2016 Corero www.corero.com

Capitalizing on the Opportunity Integrate into existing carrier operational and billing systems: REST based API's for north and southbound integration Leveraging Tail-F for centralized management and scalability Per customer visibility charts providing ease of validation Per customer attack bandwidth utilization which can be mapped into customer records, ensuring accurate per customer billing information Virtualized Management framework

Value-Add or Revenue-Add Infrastructure hosting companies are in a highly competitive marketplace: Customers are intolerant of downtime and service interruptions Instantaneous DDoS mitigation reduces downtime Reduces churn and improves new-business win rates Is a powerful differentiator Providers looking to add service lines: DDoS defence can provide an opportunity to keep prices up Can serve as an additional revenue stream to end users © 2016 Corero www.corero.com

DDoS Defense-as-a-Service Benefits Zero Downtime Service Offerings Corero’s instant mitigation vs a human NOC/SOC agent enables rapid response to alarms, real-time analysis of traffic, reroute to scrubbing center, re-inject traffic… Customer Premises Based Deployment Corero’s simplicity, resiliency, and the ability to remotely manage and monitor, enables appliance(s) to be deployed in-line at high value customers, or at high risk customers such as gaming or financial organizations. Unlimited Scalability Corero enables massive scale for extreme high bandwidth customers A New DDoS Economic Model Corero’s pricing model and reduced CAPEX/OPEX enables immediate ROI

Per Customer Security and Visibility Provider view

Thank you Dave Larson Dave.Larson@corero.com www.corero.com