BEIJING, May 20, 2013 /PRNewswire/ -- In the past two years, DDoS attacks on the Internet have become a pressing issue all over the world. Attack events can be initiated by different motivations, such as religious or political issues. In March 2013, the incident between Spamhaus and Cyberbunker led to attacks of over 300Gbps traffic. The attacks in such massive volumetric traffics and scales were unprecedented.
From the recent attack events, it showed that a disturbing trend in DDoS attacks have been moving away from network-type attacks and focusing on the hybrid attacks, which include the HTTP Flood attacks at the application layer and high-bandwidth or volumetric DDoS attacks at the network layer. The hybrid attacks enlarged the attack scale, showing a trend of APT attacks.
Statistics showed that currently many Internet Service Providers (ISPs), governments, and data centers have no dedicated DDoS mitigation solutions in place. To defend against the more prevalent and sophisticated DDoS attacks, especially against hybrid attacks, merely a few customers are equipped with purposed-built DDOS mitigation products or employ traffic cleaning services. Even though DDoS attacks of over 100Gbps are relatively rare, attacks of hundreds of megabits, several gigabits, and dozens of gigabits occur every day. It poses a great risk and threat to organizations that do not have Anti-DDoS mitigation solution to fend off these emerging threats.
As cloud computing is widely employed and the development of data centers are growing faster, how to protect enterprise IT network infrastructure and critical corporate systems from DDoS attacks and diversified web vulnerability has been a critical and important issue that IT professionals need to deal with on a daily basis. Should the CISO either purchase dedicated security products or lease cleaning services provided by ISPs, data centers, or MSSPs?
At the CSA APAC Congress held in Singapore on May 15, 2013, Dr. Richard Zhao, Board Director of CSA Greater China Coordination Body and Chief Strategy Officer of NSFOCUS, shared his research and insight into intelligence driven security with practical examples of the layered-cooperative protection solution, which is designed to defend against the complicated Web attacks by combining technologies in cloud-based traffic cleaning with CPE protection and cloud security monitoring service.
The "Cloud-Pipe-CPE" layered-cooperative protection ecosystem provides an accurate and automatic protection solution for enterprise customers. This ecosystem solution enables data centers and cloud providers to not only enhance their protection ability on both infrastructure and Web security, but also provide cloud security services to their customers.
The built-in intelligence mechanisms, collaboration functionality between security products, as well as the automation provisioning are the critical elements to successfully fend off the new and emerging threats, which include DDoS attacks and web intrusions, according to the research by NSFOCUS Security Labs, led by Dr. Richard.
At this event, Dr. Richard Zhao was awarded the Ron Knode Service Award 2012 by the Cloud Security Alliance in the appreciation of his outstanding contribution to the research and organization development at CSA.
About NSFOCUS
NSFOCUS is a proven global leader in active perimeter network security for service providers, data centers, and corporations. It focuses on providing network security solutions. More detailed information is available at http://www.nsfocus.com/.
