Arbor Networks has debuted Peakflow 7.0, which targets fast-flood distributed denial of service (DDoS) attacks on service provider networks
The new version identifies attacks in as little as one second and initiates mitigation in less than thirty seconds, the company said.
Fast-flood attacks can ramp up to multi-hundred gigabits in size in a matter of seconds, and have the potential to cause significant collateral damage across a provider network. In 2014, the DDoS landscape has been dominated by these very large attacks that leverage reflection/amplification capabilities within such network elements as DNS, NTP and more recently Simple Service Discovery Protocol (SSDP).Through the end of the third quarter, Arbor said that it has seen more than 130 attacks larger than 100Gbps, a dramatic spike in the frequency of volumetric attacks compared to previous quarters.
The Peakflow platform includes two main components, Peakflow and the Peakflow Threat Management System. Peakflow combines network-wide anomaly detection and traffic engineering with the Peakflow Threat Management System, which automatically detects and surgically removes only attack traffic, while maintaining other business traffic. With the ability to mitigate only the attack traffic, customer-facing services remain available while providers actively mitigate attacks. The Peakflow platform also powers many of the world’s leading cloud-based DDoS managed security services.
New features in Peakflow 7.0 include built-in SSL inspection to block encrypted attacks; an improved set of countermeasures aimed at HTTP, DNS, and TCP connection attacks; and additional data analysis for DDoS attacks, including geographic information (what countries attacks are coming from), network information (which networks the attacks are coming from), and automatic identification of major attack patterns.
“The majority of the world’s service providers rely on the Peakflow platform for network intelligence and DDoS protection,” said Arbor Networks President Matthew Moynahan. “More than 60 providers utilize the Peakflow platform to also offer DDoS managed services to their customers. Our continued innovation in the area of DDoS attack detection and mitigation has duel benefits for our service provider customers, helping protect their own infrastructure while also improving their ability to deliver DDoS managed security offerings.”