Security Basics
DDoS protection Jun 16 2014 08:16AM
kartik netec gmail com (6 replies)
Re: DDoS protection Jun 16 2014 06:25PM
Dolev Farhi (dolevf gmx com)
Re: DDoS protection Jun 16 2014 02:31PM
Kelly Keeton (kellyrkeeton gmail com) (1 replies)
Re: DDoS protection Jun 16 2014 09:15PM
Raistlin Majere (raistlin majere net)
RE: DDoS protection Jun 16 2014 01:18PM
Sable, Amol (Amol_Sable bmc com)
Hi Kartik,

Greetings!

DDS vs IPS (for DoS protection aspect only)

The following capabilities are essential as part of any DoS Defense solution. I'm trying to add my comments for IPS in the same area.

1. Detect and mitigate rate-based and protocol attacks
--> Hard to comment on ability of IPS boxes here. I feel, DDS are more focused on the problem than IPS

2. Resistant to known evasion techniques
--> Based on my observation, IPS vendors are continually improving on detecting attacks combining evasion techniques

3. Be highly resilient and stable and provide legitimate access to protected resources while under DDoS attack
-->IPS boxes undergo rigorous stress testing these days

4. Ability to operate at layer 3
--> An IPS monitors traffic at Layer 3 and Layer 4 to ensure that their headers, states, and so on are those specified in the protocol suite. However, the IPS sensor analyzes at Layer 2 to Layer 7 the payload of the packets for more sophisticated embedded attacks that might include malicious data. This deeper analysis lets the IPS identify, stop, and block attacks that would normally pass through a traditional firewall devices, even DDS devices

If anti DDoS solutions are really solving the purpose needs to be evaluated. May be some benchmark reports will help. Some vendors are providing such reports for both - IPS appliances as well as DDS devices. That would be a good starting point.

I'd not buy DDS unless it is an absolute necessity and there are no budget constraints.

The question is really good. Let's see what other's views are.

Regards,
Amol

-----Original Message-----
From: listbounce (at) securityfocus (dot) com [email concealed] [mailto:listbounce (at) securityfocus (dot) com [email concealed]] On Behalf Of kartik.netec (at) gmail (dot) com [email concealed]
Sent: 16 June 2014 13:47
To: security-basics (at) securityfocus (dot) com [email concealed]
Subject: DDoS protection

Hi,

My question is about the DDoS protection appliances. Is it really worth spending $$$$$ buying a DDoS appliance if we already had DDoS subscription from the ISPs?

And apart from Arbor and Fortinet, do we have any other big player in this technology?

PS: we are not evaluating cloud based DDoS protection.

Please advise.

Thanks,
KT

------------------------------------------------------------------------

Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
------------------------------------------------------------------------

------------------------------------------------------------------------

Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
------------------------------------------------------------------------

[ reply ]
RE: DDoS protection Jun 16 2014 12:15PM
Jácint TÓTH (Jacint Toth xapt com)
Re: DDoS protection Jun 16 2014 12:10PM
Kopacsi, Christian (Christian Kopacsi chemicalbankmi com) (2 replies)
Re: DDoS protection Jun 16 2014 10:17PM
PEra (MLS) (lists sevenlayers org)
Re: DDoS protection Jun 16 2014 06:21PM
Dolev Farhi (dolevf gmx com)
Re: DDoS protection Jun 16 2014 11:31AM
tdjackey (tdjackey gmail com) (1 replies)
Re: DDoS protection Jun 16 2014 06:27PM
Rob Morin (rob 24365 ca) (2 replies)
Re: DDoS protection Jun 17 2014 12:50PM
Abhishek Kumar \(abhkuma7\) (abhkuma7 cisco com)
RE: DDoS protection Jun 17 2014 10:12AM
rajumsn ingvysyabank com


 

Privacy Statement
Copyright 2010, SecurityFocus