Radware: Assuring Complete Security of Business Critical Applications

Carl Herberger, VP, Security Solutions
Today, DDoS attacks have evolved into a complex and overwhelming security challenge for organizations, both large and small. The impact is rather frightening in terms of reduced revenue, higher expense, declining consumer trust and damaged reputation, with the continuous rise of cyber-attacks. Subsequently, there has been an increase in more sophisticated application-level attacks and Secure Sockets Layer (SSL) encryption-based attacks. “It represents about 25 percent of the attacks,” says Carl Herberger, VP, Security Solutions, Radware. As several businesses fall target to hackers, in spite of deploying firewalls and advanced security measures, Radware [NASDAQ:RDWR], based in Tel Aviv, Israel, engineers scalable security products and platforms to ensure optimal service levels for applications.

“We generally look at DDoS attacks across three parameters— duration, size, and complexity,” states Herberger. The firm’s on-premise DDoS devices cover different types of attacks and scales to meet the size and type of the attacks. “When attacks exceed a customer’s inbound traffic volume, we offer cloud-based scrubbing to mitigate threats outside of the customer's network regardless of their duration and size without requiring redirection of all traffic” says Herberger. Radware’s solution also includes dedicated hardware to handle the complexity of SSL-encrypted flood attacks and uses behavioral analysis and response technologies to mitigate attacks.

DefensePro from Radware is the core product offering behind its DDoS protection and one of the primary elements of the firm’s Attack Mitigation Service which is a fully managed DDoS attack mitigation service and protection solution. DefensePro provides world-class security including SSL-based protection to fully protect applications and networks against known and emerging network security threats. Additionally, DefensePro embeds two unique and dedicated hardware components—a DDoS Mitigation Engine (DME) to prevent high volume DDoS and data flood attacks, without impacting legitimate traffic, and a String Match Engine (SME) to accelerate signature detection. “The other protection layers and network based operations are done by multi-purpose CPUs which provide the required flexibility and scalability for more standard operations,” affirms Herberger.
Essentially, Radware’s solutions have empowered more than 10,000 enterprises and carrier customers worldwide to adapt to market challenges quickly, maintain business continuity, and achieve maximum productivity, while keeping costs down. For instance, in early 2014, Boston Children’s Hospital (BCH) became embroiled in a controversial custody case due to the care they were administering to a child taken into protective custody. As the case progressed, the hospital became the target of sophisticated attacks from Anonymous—an international hacktivist group. The attacks brought major implications as BCH faced challenges in maintaining their network connectivity for the progressive use of network-enabled devices to administer care. Furthermore, seven other healthcare organizations were sharing connectivity through an Internet Service Provider (ISP) with BCH. Any threat to the ISP would result in organizations ultimately losing network connectivity. From a technical perspective, the BCH team invoked Radware’s Emergency Response Team (ERT) and the Radware scrubbing center due to the massive rate of DDoS attacks. In the end, Radware was able to help BCH and the other healthcare providers avoid clinical impact from the attack.

We offer cloud-based scrubbing to mitigate threats outside of the customer's network regardless of their duration without requiring redirection of all traffic

Radware’s portfolio of solutions continues to deliver service level assurance for business-critical applications, while maximizing IT efficiency. In days to come, the company is planning to add new features and improvements across its solutions and also build more automation into their attack mitigation solution. “We will deliver automated attack mitigation around centralized command and control functionality for data collection, attack detection, and attack mitigation,” concludes Herberger.


Tel Aviv, Israel

Carl Herberger, VP, Security Solutions

Radware is a global leader of application delivery and cyber security solutions for virtual, cloud, and software defined data centers.