Radware 的 APSolute Immunity为网络提供处理突发攻击的能力

Radware (NASDAQ: RDWR), the leading provider of integrated application delivery solutions for business-smart networking, today introduced its APSolute Immunity ^TM security initiative, a new strategic approach that maintains business continuity by protecting the applications infrastructure against existing and emerging network based threats that cannot be detected by traditional IPS such as: application misuse threats, SSL attacks and VoIP service mis-use. Coupled with Radware’s DefensePro security solution, this umbrella security strategy allows organizations to move beyond static intrusion prevention systems (IPS) by mitigating attacks that use legitimate application services for malicious activity.

Radware’s APSolute Immunity strategy reflects the human immune system’s ability to combat a myriad of known and unknown diseases, often without the need of vaccinations, by providing “immunity” against known and unknown vulnerabilities that seek to compromise the health of the application infrastructure. This is vital in ensuring real-time protection against many of today’s targeted financially motivated attacks that require more than simple, signature-based detection — including non-vulnerability based threats that misappropriate the use of an application without exploiting any software flaw in its design. Examples of such threats include phishing, brute force, network and application flooding as well as network and application scanning. These threats behave like legitimate user transactions and cannot be detected through a standard signature-based IPS.

“Hackers no longer receive thrills from just hacking into an IT system. Today, concentrating on financial gain, they have added non-vulnerability threats to their arsenal, making detection almost impossible. Radware is currently the only provider to have an IPS solution that uses real-time signatures relying on behavioral analysis technology for identifying and blocking these new types of attacks,” stated Rob Ayoub, Analyst, Frost & Sullivan.

With today’s introduction of the APSolute Immunity initiative, Radware also offers an upgraded DefensePro solution, version 4.10. This enhanced offering provides greater network visibility, generating detailed reports as to the nature of a network threat or attack, and drawing on client behavioral, network-behavioral and server-behavioral analysis to solve the “lag” associated with non-vulnerability and zero-minute attacks. DefensePro incorporates vulnerability-based IPS features with adaptive behavioral-based IPS that support automatic real-time attack signature generation, to maintain critical application availability when under non vulnerability-based or zero-minute attack by blocking attack traffic without blocking legitimate user traffic.

“Our enhanced APSolute Immunity security approach identifies Layer-7 server resource misuse, abnormal user activity and can block abnormal users’ access to the specific server resources such as web pages or service login under attack,” said Avi Chesla, Vice-President of Security, Radware Ltd. “This ensures the detection and prevention of attacks that misuse applications while maintaining uninterrupted legitimate user access during attack time".

"Combined with the release f the new DefensePro version 4.10, IT managers and CSOs are provided with behavioral driven real-time signature technology and advanced intelligence into normal and abnormal network behavior with full, real-time visibility into detailed attack signature and attack information. This is critical to ensure greater network, organization and end-user protection against emerging threats” Chesla continued.

Additionally, under the APSolute Immunity umbrella strategy, Radware offers organizations the opportunity to greatly reduce operation expenditures, by offering seamless integration of its transparent security solutions into the network environment by requiring zero modifications to network settings. Further organizational value is achieved through the strategy’s “hands-off” approach as APSolute Immunity is self-learning and self-protecting, requiring no human intervention while the network is under attack, and no need for advanced configuration and tuning.

about radware

Radware (NASDAQ:RDWR), the global leader in integrated application delivery solutions, assures the full availability, maximum performance, and complete security of business-critical applications for more than 5,000 enterprises and carriers worldwide. With APSolute™, Radware's comprehensive and award-winning suite of intelligent front-end, access, and security products, companies in every industry can drive business productivity, improve profitability, and reduce IT operating and infrastructure costs by making their networks "business smart." For more information, please visit www.radware.com.

      Radware 的 APSolute Immunity为网络提供处理突发攻击的能力
                                                                            Radware（纳斯达克股票代码： rdwr ） ，作为集成应用交付解决方案的商业智能网络的领先供应商，推出它的名为APSolute Immunity 的安全体系，这是一个新的战略方针，它通过抵御已存在的和正在出现的基于网络的威胁来保护应用基础设施以保持业务连续性，这些威胁是传统的IPS检测不到的 ，如：应用滥用的威胁，SSL攻击的VoIP服务的误用。再加上Radware的defensepro安全解决方案，这样的安全伞战略使组织能够超越静态入侵预防系统（ IPS ）来减轻使用合法应用服务的恶意活动产生的攻击。
    Radware的 APSolute Immunity 策略反映了人体免疫系统的能力，以打击各种已知和未知的疾病，往往不需要接种疫苗，通过提供免疫力防御已知或未知的漏洞，因为这些漏洞会对应用的健壮性形成威胁。对于今天大量的针对财政系统的攻击，确保实时的保护是非常重要的。需要更多简单的基于签名的检测--包括非基于漏洞的攻击，这些攻击没有利用软件设计的缺陷，而是由于对应用的不适当使用造成的。这类攻击包括：钓鱼网站，暴力破解，网络和应用的洪水攻击及扫描。这些威胁的行为很像合法的用户，所以标准的基于签名的ips是无法检测出的。
    “黑客们不再为刚刚入侵了一个it系统而感到刺激。今天，黑客们更关心利益的获取，他们已经把非基于漏洞的攻击加入了他们的军火库，使检测几乎不可能。Radware的是目前唯一供应商有一个IPS解决方案使用实时签名，依靠行为分析技术，识别和拦截这些新类型的攻击”分析家罗伯特阿尤布说。
    除了对APSolute主动免疫性的的介绍，Radware的也提供了升级defensepro的解决方案，版本4.10 。它提供更好的网络可见性，生成详细的，对网络威胁或攻击进行原始记录的日志，结合客户端的行为，网络行为和服务器行为的分析解决与非漏洞攻击及零分攻击相关的“延迟”。defensepro结合了基于漏洞的ips特征和支持自动产生实时攻击签名的基于行为的ips的特征，来维持关键应用的可用性。当阻断非漏洞攻击及零分攻击的流量是不会影响合法的用户流量。
    “我们增强的apsolute 免疫的方法，可了识别7层服务器资源滥用，不正常的用户活动，并可以阻止异常的用户访问到特定的服务器资源，如网页或服务登录受到攻击” Radware的有限公司副总裁AVI chesla说道“ ，这样才能确保检测和预防滥用应用的攻击，同时保持不间断的合法用户在服务器被攻击期间的访问 ”
     “结合 DefensePro 4.10的发布,it 经理和计算机服务机构提供依据行为把实时签名技术和高级智能分为正常和非正常的网络行为，并对这些行为有完全的，实时的可见性，可细化到攻击特征和攻击信息。这对保护更大网络、组织和终端用户不受攻击是至关重要的”chesla继续说道。
    此外，根据apsolute Immunity的保护伞策略，Radware通过在用户网络环境中的透明接入的无缝结合-不需要改变任何网络配置，为组织提供大大减少运作支出的机会。对于组织来说，它更大的价值在于可以通过制定“不干涉”策略使APSolute Immunity在收到攻击的情况下，无需人工干预，也无需高级的配置和调节，达到自我学习，自我检测的状态。
 
关于Radware
    Radware（纳斯达克股票代码： rdwr ） ，全球领先的集成应用交付解决方案，保证了充分的可用性，为5000多企业和世界各地的运营商提供最大效能和完整的安全性的关键业务应用。 Radware apsolute广泛的和屡获殊荣的全套智能前端、访问和安全的产品，通过使他们的网络达到“业务智能”，使每一个行业可以推动企业生产力，提高盈利能力，并减少它的经营和基础设施的成本。如需详细资讯，请造访www.radware.com 。