Arbor Network's Active Threat Level Analysis System analyzes the data traversing various "darknets", painting a global view of malicious traffic traversing the backbone networks that form the Internet's core.
(WEB HOST INDUSTRY REVIEW) — Security and network management solutions developer Arbor Networks (www.arbornetworks.com) has added geography-based IP alerting on traffic spikes from unexpected countries, and IPv6 BGP to gain unique insight into IPv6 traffic and trends to its network-wide infrastructure security and traffic-monitoring platform, Arbor Peakflow SP.
According to Arbor Networks’ Thursday announcement, Arbor Peakflow SP 5.5 includes new capabilities and reporting features, quickly alerting users to potentially malicious traffic and giving them the ability to block or rate-limit the unexpected traffic caused by a distributed denial-of-service attack.
Peakflow SP 5.5, Arbor Networks said, also provides security teams with “macro” visibility into threats across the network.
The latest release also introduces support for 4-byte Autonomous Systems Numbers, which organizations will have to inevitably move to, given that the original group of 2-byte numbers allowed for 65,536 total ASNs and the Internet continues to grow and deplete these numbers. The expansion of ASNs to 4 bytes provides a pool of more than four billion numbers.
“Arbor is delivering carrier-class platforms for the detection and surgical mitigation of both volumetric DDoS and application layer attacks and also from internal threats like malicious insiders and compromised hosts,” Arbor Networks chief technology officer Rob Malan said in a statement. “Firewalls, IPS and other products are key elements of an overall security strategy, but these solutions are designed to provide security functions that don’t address the issue of availability, and therefore, don’t meet the needs of today’s data center, hosting and cloud providers.”
Arbor has also introduced a standalone version of its Threat Management System, designed to protect hosting and Internet data center infrastructure from availability threats.
Prior to now, Peakflow SP and TMS had been tightly integrated, providing both visibility and real-time attack mitigation. Peakflow TMS is now available as a standalone appliance for rapid deployment and mitigation of DDoS attacks targeting hosting and Internet data center infrastructure and customers.
Multi-tenant environments such as data centers, compute clouds and hosting platforms are prime targets for DDoS attacks because they can be high-profile, and they have the potential to cause collateral damage across multiple customers, according to Arbor Networks.
Peakflow TMS addresses the issue of availability by identifying and removing network and application layer attacks without interrupting the flow of legitimate traffic, meaning that customer-facing services and data remain available while operators actively mitigate attacks.
No related posts.
