Radware: Streamlining Network Flows for Defense

David Aviv, CTO and VP Advanced Solutions
At the core of every great business application is a robust network that can redefine communication and deliver seamless connectivity. However, the constant barrage of record-breaking cyber-attacks on the networks has pressured organizations to seek technology partners that can protect their data and secure the overall network infrastructure. Although organizations have largely invested in ‘classic’ software-defined networking (SDN) solutions, protocols (OpenFlow) and Controllers (ODL), it hasn’t really paid off. To provide the best level of network protection, organizations today are on the lookout for state-of-the-art networking applications that offer secured flow of web traffic, better provisioning of networking services, network visibility, scalability, and virtualization.

One company that understands these requirements at the granular level is Radware, a prominent cybersecurity and application delivery solutions provider that is stirring a revolution in the networking landscape with the new concept of DefenseFlow.

DefenseFlow is a network distributed denial of service (DDoS) attack prevention and cyber control application focused on detecting and mitigating network-wide, multi-vector attacks. DefenseFlow provides new ways to harmonize security policies and support use-cases that require real-time networking decisions based on various security events and operational playbooks. “The ‘classical’ SDN use-cases are natively supported by programmable SDN Controller APIs to provide the network telemetry needed for detection of network anomalies,” states David Aviv CTO & VP Advanced Solutions of Radware.

Radware’s DefenseFlow enables users to program the network to detect any security breaches or triggers (internal or external) and customize the network behavior based on any policy playbook. DefenseFlow also provides agility and the ability to automate network-wide mitigation services. The ecosystem that can be spanned with Radware’s DefenseFlow control-plane is almost unlimited and it can be applied to orchestrate network flows based on any operational policy playbook.

Another capability recently added is the ability to extend the coverage to cloud scrubbing services. With the help of defense policies for peak protection, attacks can be immediately mitigated at the origin preventing it from spreading across the globe.
This unique capability to orchestrate security policies along various security chains: premise-cloud, premise-scrubbing and premise-scrubbing-cloud is a key factor that sets Radware apart from the competition.

The competitive edge of Radware’s networking solutions is based on four pillars. The first one, the data-plane, is the backbone of the auto mitigation process that is integrated with self-learning algorithms to enable a distributed zero-touch deployment. Second is the defense automation engine that utilizes the self-learning engines in the Radware devices and automates the entire mitigation process based on customized policy playbooks. The third one is the ability to create various defense chains across networks to ensure a holistic defense policy wherever the protected workload is deployed. The fourth pillar is adding cyber-threat intelligence (CTI) layer based on various enrichments and machine learning technologies which enables the network to continue to act even smarter over time. “These four pillars add up to a unique integrated solution with a significant competitive advantage, guaranteeing our customers a best in class solution,” states Aviv.

Our mission is to be at the forefront of SDN technology advancements and help businesses secure their network

All of Radware’s solutions are built to optimize business operations while providing application scalability, elasticity, and security on multiple tiers. This unique capability ensures that the auto-mitigation process is triggered during the attack detection event and controlled by the DefenseFlow to distribute attack policies based on the self-learned signatures. This provides Radware customers with secure delivery of traffic based on real-time closed-loops to ensure SLA matrices.

With the aim of taking the company to a new zenith, Radware intends to continue investing in three delivery modes: Cloud delivery with new services (XaaS), new physical and virtual footprints, and a new software delivery mode. In conclusion, Aviv says, “Our mission is to be at the forefront of SDN technology advancements and help businesses secure their network.”


Tel Aviv, Tel Aviv

David Aviv, CTO and VP Advanced Solutions

Radware is a global leader of application delivery and cybersecurity solutions for virtual, cloud and software-defined data centers