Comprehensive DDoS Attack Protection: Cloud-based, Enterprise Grade Mitigation F5 Silverline PRESENTED BY: RICH BIBLE, EMEA SILVERLINE SA November 22, 2018 1 2018 F5 NETWORKS
DDoS and Application Attack Trends 2 2018 F5 NETWORKS
3 DDoS attacks are easy to launch nmap hping3 Low Orbit ION Dirt Jumper killapache.pl slowloris High Orbit ION RussKill slowhttptest metasploit PhantomJS Pandora, Jmeter, Scapy, Httpflooder, PhantomJS, SSLyze, THC-SSL-DOS, and many more 20173F5 NETWORKS 2018 F5 NETWORKS
BoTs, Meet IoT Devices 1 Tbps+ DDoS Attack F5 Labs Research Powered by 150,000 Hacked IOT Devices DNS DDoS attack article on Mirai IoT Botnet Making sense of DDoS Attacks, F5 Networks 4 2018 F5 NETWORKS 4
BoT Automation is the Single Biggest Threat Half of Internet traffic comes from bots 30% is malicious EBOOK_Bots-Mean-Business, F5 Networks web attacks account takeover Vulnerability Scanning Web Scraping Denial of Service Verizon 2017 Data Breach Investigations Report 2017 Identity Fraud Study, Javelin Strategy & Research 2018 5 2018 F5 NETWORKS F5
#1 Target: Apps Apps are the first target in the majority of breaches Breaches starting at the app, have the highest breach costs Valuable Lessons Learned from a Decade of Data Breaches, F5 Labs, Threat Intelligence Report 2017 6 2018 F5 NETWORKS 2018 F5 NETWORKS 24% ID s 29% Other 53% 47% 22% INITIAL TARGETS BREACH COSTS RECORDS BREACHED BIGGEST BUSINESS RISK
Attacks Hurt Your Business Evolving security threats $11.7M Avg. annual cost of cyber security 1 Damages brand reputation Results in significant downtime and revenue loss 130 54M Successful attacks per year per company 1 Monitored cyber attacks Worldwide 2 Compromises sensitive enterprise, employee and customer data Breaches compliance required to conduct business online Source: 1 Accenture/ Ponemon, 2017 Cost of Cyber Crime Study, 2 IBM X-Force Threat Intelligence Index 2017 7 2018 F5 NETWORKS
How Does F5 Protect Against DDoS and Application Attacks? 11 2018 F5 NETWORKS
The Evolution of Silverline WAF 2014 2015 2016 Hybrid Threat Intelligence WAF Express 2016 2016 2017 Dynamic Dashboards and Detailed Visibility 2017 DNS Services Improved Usability and Automated Signaling Hybrid 2018 F5 Acquires Defense.net- Silverline is born Managed Web Application Firewall Introduced DDoS Hybrid Signaling SSL, HTTP Traffic Insight Syslog, TI WAF Express Dynamic Dashboards Usability and Improved signaling DNS Services Completing the F5 Anti- DDOS Vision Full Layer 3-7 Protection on the same platform Enables automatic burst to cloud scrubbing for high-volume mitigation Increasing visibility and transparency Agile, self-service WAF Reporting & Analytics Speedy Mitigation More Services 12 2018 F5 NETWORKS
F5 Silverline Enterprise-grade application services in minutes Cloud based, enterprise-grade Rapidly deploy enterprise-grade security services across hybrid environments with 24x7 support from F5 experts. Drive operational and cost efficiencies DDoS Protection Web Application Firewall F5 Silverline Threat Intelligence Deliver application services, anywhere Cloud-based application services 24x7 Expert Support 13 2018 2018 F5 NETWORKS F5
SOC Global Coverage SOC SOC 24/7 Support F5 Security Operations Center (SOC) in Seattle: staffed 24x7 with security experts for DDoS Protection, WAF, and Threat Intelligence. Seattle, WA U.S. Warsaw, Poland 16 2018 F5 NETWORKS 2017 F5 NETWORKS Global Coverage Fully redundant and globally distributed data centers world wide in each geographic region San Jose, CA, US Ashburn, VA, US Frankfurt, Germany Singapore, SG London, UK Industry-Leading Bandwidth Attack mitigation bandwidth capacity over 1.8 Tbps Dedicated L3/L4 and L7 scrubbing infrastructure Guaranteed bandwidth with Tier 1 carriers
SOC Expert Mitigation and In-Depth Visibility Challenge: Finding quality experts to design and manage security $145K/yr. avg. cost of Security Pro* Limited visibility is a #1 cloud problem.*** Biggest obstacles to stronger cybersecurity = lack of skilled employees and budget. ** Solution: Cloud-based DDoS scrubbing with certified security experts, in-depth attack visibility, and expert DDoS mitigation Key Benefits Mitigation of DDoS attacks in cloud High availability of private network Dedicated security team Detailed analytics and reporting Packet capture, + SLAs on response times 17 2018 F5 NETWORKS
22 2018 F5 NETWORKS