WEBINAR: Live Event Date: September 20, 2017 @ 1:00 p.m. ET / 10:00 a.m. PT
Designing a Proactive Approach to Information Security with Cyber Threat Hunting REGISTER >
Network infrastructure vendor Corsa has a new appliance for businesses that are besieged by one of the most crippling assaults to an organization's IT infrastructure: distributed denial-of-service (DDoS) attacks
Now that some botnets are powered a sprawling web of connected Internet of Things (IoT) devices, businesses are under more pressure than ever to protect themselves against DDoS attacks.
Leading websites and services have already succumbed sustained and overwhelming DDoS attacks. However, businesses face much bigger risks than having their sites knocked offline, explained Carolyn Raab, vice president of Product Management at Corsa.
"DDoS attacks risk bringing down networks so there is a direct impact on business continuity which can cost hundreds of thousands of dollars to an organization in network downtime and lost business," Raab told eSecurity Planet. "But there is also the more insidious side where volumetric DDoS attacks act as a cover for sophisticated hackers to penetrate a network."
Using a DDoS attack as a diversion of sorts, attackers may target an enterprise's IT systems and the valuable data therein.
"While a network owner is busy dealing with the volumetric DDoS attack and has all their security resources trying to protect themselves against the onslaught, cyber criminals can infiltrate a network unnoticed to steal data or embed malware," Raab added. "With IoT devices being so broadly deployed, and so poorly protected, they have become the volume behind the largest of volumetric attacks and so have enabled a new generation of particularly large and aggressive DDoS attack types that present even greater risk to network owners."
Corsa's DDoS mitigation appliance, the NSE7000, protects against attempts like these with software and high-performance hardware that can apply a large number of mitigation policies, 200,000 in fact, in under a minute. Upon detecting a thread, it responds in real-time, warding off attack traffic and ensuring that legitimate traffic flows unimpeded.
"For enhanced performance to deal with hundreds of thousands of mitigation rules, Corsa's hardware architecture separates front end processing of traffic with distinct TCAM offloads and advanced search algorithms," Raab explained. "This allows the mitigation engine to work at 100 Gbps line-rate and process packets at 150Mpps [million packets per second] while simultaneously updating rules tables at a rate of 3389 rules per second. This means that hundreds of thousands attack types can be detected and the appropriate mitigation rules stored and acted upon in less than one minute with no impact to traffic throughput performance."
The Corsa Red Armor NSE7000 application is available now worldwide.