One company that understands these requirements at the granular level is Radware, a prominent cybersecurity and application delivery solutions provider that is stirring a revolution in the networking landscape with the new concept of DefenseFlow.
DefenseFlow is a network distributed denial of service (DDoS) attack prevention and cyber control application focused on detecting and mitigating network-wide, multi-vector attacks. DefenseFlow provides new ways to harmonize security policies and support use-cases that require real-time networking decisions based on various security events and operational playbooks. “The ‘classical’ SDN use-cases are natively supported by programmable SDN Controller APIs to provide the network telemetry needed for detection of network anomalies,” states David Aviv CTO & VP Advanced Solutions of Radware.
Radware’s DefenseFlow enables users to program the network to detect any security breaches or triggers (internal or external) and customize the network behavior based on any policy playbook. DefenseFlow also provides agility and the ability to automate network-wide mitigation services. The ecosystem that can be spanned with Radware’s DefenseFlow control-plane is almost unlimited and it can be applied to orchestrate network flows based on any operational policy playbook.
Another capability recently added is the ability to extend the coverage to cloud scrubbing services. With the help of defense policies for peak protection, attacks can be immediately mitigated at the origin preventing it from spreading across the globe.
The competitive edge of Radware’s networking solutions is based on four pillars. The first one, the data-plane, is the backbone of the auto mitigation process that is integrated with self-learning algorithms to enable a distributed zero-touch deployment. Second is the defense automation engine that utilizes the self-learning engines in the Radware devices and automates the entire mitigation process based on customized policy playbooks. The third one is the ability to create various defense chains across networks to ensure a holistic defense policy wherever the protected workload is deployed. The fourth pillar is adding cyber-threat intelligence (CTI) layer based on various enrichments and machine learning technologies which enables the network to continue to act even smarter over time. “These four pillars add up to a unique integrated solution with a significant competitive advantage, guaranteeing our customers a best in class solution,” states Aviv.
All of Radware’s solutions are built to optimize business operations while providing application scalability, elasticity, and security on multiple tiers. This unique capability ensures that the auto-mitigation process is triggered during the attack detection event and controlled by the DefenseFlow to distribute attack policies based on the self-learned signatures. This provides Radware customers with secure delivery of traffic based on real-time closed-loops to ensure SLA matrices.
Our mission is to be at the forefront of SDN technology advancements and help businesses secure their network
With the aim of taking the company to a new zenith, Radware intends to continue investing in three delivery modes: Cloud delivery with new services (XaaS), new physical and virtual footprints, and a new software delivery mode. In conclusion, Aviv says, “Our mission is to be at the forefront of SDN technology advancements and help businesses secure their network.”