DDoS attacks are becoming more dangerous and more sophisticated every day. An effective protection against DDoS attacks is prevention, which consists of the timely deployment of detection mechanisms and the right choice of solutions that will separate the attack from legitimate data. Individual attacks are not completely identical, and differ in design and intensity. Each type of attack, therefore, requires a special approach and specific actions.
The solution is FlowGuard
FlowGuard service is a technologically advanced solution that provides comprehensive protection against DDoS attacks. Specifically, protection against DDoS attacks using FlowGuard can be divided into two parts - detection and minimizing the data flow. FlowGuard uses unique self-learning mechanisms, which reliably identify dangerous data.
FlowGuard can work in two modes, either in the cloud or hybrid. In the case of a cloud solution, all data traffic is continually redirected to the FlowGuard Cloud, which automatically cleans up traffic and deflects attacks. In the case of a hybrid version of FlowGuard service deployment, a protected device (CPE) is used to detect attacks on a protected entity. FlowGuard can be integrated with any CPE device that allows you to export information about data flows. Suppliers of verified devices include major manufacturers such as Flowmon, Radware, Arbor, CheckPoint, and Cisco.
If an attack is identified, the defensive mechanism is activated when the data stream is redirected to the massive infrastructure of a so-called scrubbing center. Here, infected data is cleaned of malicious content and only legitimate data flows leave the network infrastructure protected by online services. Due to this, the protected service remains available even in the case of a large attack. In regular mode, FlowGuard continuously evaluates data streams so that when captured in warning signals it is ready to deflect an attack.
The deployment of FlowGuard is suitable where the disruption of the availability of critical online services by DDoS attacks could result in major financial losses or threatens the operation of a strategically significant entity. Typical examples are, for example, online shops, payment gates or software applications provided as a service, or network infrastructure of offices, energy suppliers or similar institutions. An advantage for Czech and Slovak users is the fact that FlowGuard is developing in the Czech Republic, with at least one security center and a technical support center.
In addition to protecting against DDoS attacks, FlowGuard also offers protection against some other threats. By using the complementary Data Leak Prevention (DLP) module, which pseudonymizes personal data stored on servers, it helps meet the requirements of the European GDPR Guideline while also ensuring that authorized persons are informed of potential security incidents. The WAF (Web Application Firewall) module then protects web applications and eliminates the attacks described in OWASP TOP10.