Presentation is loading. Please wait.

Presentation is loading. Please wait.

AKAMAI INTELLIGENT PLATFORM™

Published bySilas Copeland Modified over 6 years ago

Similar presentations

Presentation on theme: "AKAMAI INTELLIGENT PLATFORM™"— Presentation transcript:

1 AKAMAI INTELLIGENT PLATFORM™
Akamai Cloud Security – Protection for Websites and Internet-Facing Applications AKAMAI INTELLIGENT PLATFORM™ 200,000+ servers │ 7 scrubbing centers KEY: Fast DNS Security Operations Center Cloud Security Intelligence SIEM integration Luna portal w/Security Monitor Scrubbing Center Detection Identification Orchestration Mitigation Network Applications Other data center infrastructure B A 2 E 6 1 DATA CENTER 5 3 Web server Load balancer Storage Database Origin cloaking Site Shield Edge Server APPLICATION ORIGIN CLIENTS 4a DDoS protection Web app firewall Bot management IP reputation 4b C 4c 4d D 1. Client requests URL – request made to Akamai DNS service with global scale and segmented architecture to absorb the largest DDoS attacks 2. DNS resolves to the optimal Akamai Edge server with fewer lookups using zone apex mapping 3. Client connects and sends request to designated Edge server 4. Edge server inspects and takes action on malicious or bot requests: a. Adaptive rate controls automatically respond within seconds to block requests when the rate exceeds customer-defined thresholds. Also, IP blacklists and geo-blocking block requests from clients as defined b. Web Application Firewall inspects requests for malicious patterns and blocks based on anomaly risk score. Proprietary Kona Rule Set and nightly WAF testing maintains low false positives and false negatives. c. Bot Manager blocks or takes advanced management actions on requests generated by different types of automated bots, based on customer-defined bot categories d. Client Reputation leverages Akamai’s Cloud Security Intelligence big- data analysis engine to block requests from IP addresses that Akamai has observed attacking other Akamai customers 5. For cloud environments or smaller data centers without a /24, customers can configure origin ACLs to only allow communication from Akamai Site Shield servers and “cloak” the origin from attackers 6. For larger data centers with a /24, customers can route all network traffic (for both web and non-web applications) through an Akamai scrubbing center, where the Akamai SOC will inspect for and block any DDoS attack traffic

Download ppt "AKAMAI INTELLIGENT PLATFORM™"

Similar presentations

Cloud computing is used to describe a variety of computing concepts that involve a large number of computers connected through a real-time communication.

Cloud computing is used to describe a variety of computing concepts that involve a large number of computers connected through a real-time communication.
Stonesoft Roadmap WHAT FEATURES WILL COME IN 2013-2014.

Stonesoft Roadmap WHAT FEATURES WILL COME IN
Akamai DNS Offerings RSA © Conference 2013. ©2013 AKAMAI | FASTER FORWARD TM Akamai DNS Solutions Enhanced DNS (eDNS) Scalable, outsourced, DNS solution.

Akamai DNS Offerings RSA © Conference ©2013 AKAMAI | FASTER FORWARD TM Akamai DNS Solutions Enhanced DNS (eDNS) Scalable, outsourced, DNS solution.
The Way to Protect The Smartest Way to Protect Websites and Web Apps from Attacks.

The Way to Protect The Smartest Way to Protect Websites and Web Apps from Attacks.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Arbor Multi-Layer Cloud DDoS Protection

Arbor Multi-Layer Cloud DDoS Protection
© 2014 Level 3 Communications, LLC. All Rights Reserved. Proprietary and Confidential. Polycom event Security Briefing 12/03/14 Level 3 Managed Security.

© 2014 Level 3 Communications, LLC. All Rights Reserved. Proprietary and Confidential. Polycom event Security Briefing 12/03/14 Level 3 Managed Security.
CONFIDENTIAL & PROPRIETARY 1 WAF and Identity and Access Management Integration The Next Step in the Evolution of Application Security Best Practices Jan.

CONFIDENTIAL & PROPRIETARY 1 WAF and Identity and Access Management Integration The Next Step in the Evolution of Application Security Best Practices Jan.
© 2013 Imperva, Inc. All rights reserved. Imperva Incapsula Confidential1 Doug Smith, Region Sales Mgr 416.574.2799.

© 2013 Imperva, Inc. All rights reserved. Imperva Incapsula Confidential1 Doug Smith, Region Sales Mgr
Beyond DDoS: Case Studies on Attack Mitigation for Financial Services Mike Kun and Patrick Laverty, Akamai CSIRT.

Beyond DDoS: Case Studies on Attack Mitigation for Financial Services Mike Kun and Patrick Laverty, Akamai CSIRT.
CLOUD COMPUTING  IT is a service provider which provides information.  IT allows the employees to work remotely  IT is a on demand network access.

CLOUD COMPUTING  IT is a service provider which provides information.  IT allows the employees to work remotely  IT is a on demand network access.
Web Application Firewall (WAF) RSA ® Conference 2013.

Web Application Firewall (WAF) RSA ® Conference 2013.
1 Managed Premises Firewall. 2 Typical Business IT Security Challenges How do I protect all my locations from malicious intruders and malware? How can.

1 Managed Premises Firewall. 2 Typical Business IT Security Challenges How do I protect all my locations from malicious intruders and malware? How can.
Akamai Technologies - Overview RSA ® Conference 2013.

Akamai Technologies - Overview RSA ® Conference 2013.
INTERNATIONAL NETWORKS At Indiana University Hans Addleman TransPAC Engineer, International Networks University Information Technology Services Indiana.

INTERNATIONAL NETWORKS At Indiana University Hans Addleman TransPAC Engineer, International Networks University Information Technology Services Indiana.
The benefits of externalizing Web DMZ-as-a-Service in the Cloud James Smith, Sr. Security Sentrix

The benefits of externalizing Web DMZ-as-a-Service in the Cloud James Smith, Sr. Security Sentrix
Kona Security Solutions - Overview

Kona Security Solutions - Overview
Hello Cloud… Mike Benkovich

Hello Cloud… Mike Benkovich
Get Full Protection on Microsoft Azure with Symantec™ Endpoint Protection 12.1 MICROSOFT AZURE ISV PROFILE: SYMANTEC Symantec™ Endpoint Protection is an.

Get Full Protection on Microsoft Azure with Symantec™ Endpoint Protection 12.1 MICROSOFT AZURE ISV PROFILE: SYMANTEC Symantec™ Endpoint Protection is an.
Blue Coat Cloud Continuum

Blue Coat Cloud Continuum

Similar presentations

Ads by Google