Printer Friendly
The Free Library
19,607,059 articles and books
Member login
User name  
Password 
 
Join us Forgot password?

DDoS Protection Solution Builds on Cisco Managed Service Leadership; Cisco DDoS Protection Solution, with New Enhancements, Helps Protect Service Providers and Their Customers.


CHICAGO -- Cisco Systems “Cisco” redirects here. For other uses, see Cisco (disambiguation).
Cisco System,Inc. (NASDAQ: CSCO, HKSE: 4333 ) is an American multinational corporation with 54,000 employees and annual revenue of US $28.48 billion as of 2006. (R) (NASDAQ NASDAQ
 in full National Association of Securities Dealers Automated Quotations

U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on :CSCO CSCO Cisco Systems Incorporated (stock symbol)
CSCO Chief Supply Chain Officer ) today announced the availability of the Cisco Distributed Denial of Service A condition in which a system can no longer respond to normal requests. See denial of service attack.  (DDoS) Protection solution. Building on Cisco leadership in managed service development, this solution helps enable service providers to deliver managed DDoS protection to their customers.

Security features are an integral part of Cisco IP NGN IP NGN IP Next Generation Network (Cisco)  architecture. At the Service Layer, the DDoS Protection solution enables service providers to deploy network-based security services Security services are state institutions for the provision of intelligence, primarily of a strategic nature, but also including protective security intelligence. Examples include the Security Service (MI5) and the Secret Intelligence Service (MI6) in the United Kingdom, and the  for added revenue and fulfill the market demands for security with simplicity. At the Operational Layer, this solution also enables service providers to deploy hardening hardening, in metallurgy, treatment of metals to increase their resistance to penetration. A metal is harder when it has small grains, which result when the metal is cooled rapidly.  and protection measures to shield their own network infrastructure from DDoS attacks. This permits providers to deliver highly secure, resilient IP services, including VPN (Virtual Private Network) A private network that is configured within a public network (a carrier's network or the Internet) in order to take advantage of the economies of scale and management facilities of large networks. , IP voice communications, video and on-line gaming, to their customers, without disruption, in order to meet service-level agreement requirements.

A number of global and regional service providers have found measurable benefits in the Cisco DDoS Protection solution and many, including Sprint, are also finding great value in the managed network component of the solution.

"Cisco has provided leading products and solutions to meet requirements to help ensure reliable and highly secure data services," said Randy Ritter rit·ter  
n. pl. ritter
A knight.


[German, from Middle High German riter, from Middle Dutch ridder, from r , vice president of product management at Sprint. "Our enterprise customers rely on the Internet to run their businesses. With Sprint's IP Defender service, based on those solutions, we can work to provide them the necessary security to deal with DDoS threats."

DDoS attacks are becoming more prevalent due to readily available attack creation tools, while motivations are becoming increasingly varied and malicious. While DDoS attacks were once primarily the work of hackers who wanted to temporarily take well-known sites offline to get media attention, they are more recently being used as the foundation of elaborate extortion extortion, in law, unlawful demanding or receiving by an officer, in his official capacity, of any property or money not legally due to him. Examples include requesting and accepting fees in excess of those allowed to him by statute or arresting a person and, with  schemes, costing companies millions of dollars.

DDoS attacks against host systems or network infrastructure result in the disruption of service to customers and users. These attacks may limit the ability to access servers and other critical network resources or completely block legitimate network traffic flows, saturating available bandwidth with excessive packet flooding.

The most effective way to mitigate DDoS attacks is to "scrub" the traffic before it reaches the customer premise, preventing malicious traffic from reaching customer networks. Combating these attacks requires a purpose-built, system-level architecture that detects and mitigates these increasingly sophisticated, complex and deceptive attacks.

Unlike other DDoS defense techniques, the Cisco DDoS protection solution is designed to deliver "clean pipes" capabilities that consist of several major functional elements working towards protecting a network from DDoS attacks, including detection, mitigation, and traffic diversion and injection. The Cisco solution's mitigation function aims to accurately distinguish legitimate traffic from malicious traffic destined des·tine  
tr.v. des·tined, des·tin·ing, des·tines
1. To determine beforehand; preordain: a foolish scheme destined to fail; a film destined to become a classic.

2.  for mission-critical hosts, filter out malicious traffic, and allow legitimate traffic to pass.

The Cisco DDoS Protection solution features three service deployment models:

--Managed Network DDoS Protection -- Enables service providers to offer their customers protection against DDoS attacks on their last-mile connections and internal infrastructure

--Managed Hosting DDoS Protection -- Enables hosting providers to help protect their web and other hosting services from DDoS attacks

--Peering Edge DDoS Protection -- Works to enable service providers to provide DDoS-free wholesale connections to their ISP (1) See in-system programmable.

(2) (Internet Service Provider) An organization that provides access to the Internet. Connection to the user is provided via dial-up, ISDN, cable, DSL and T1/T3 lines.  customers

Service provider benefits include:

--Ability to protect or "harden" IP service and network infrastructure to enable IP service delivery despite attempted DDoS attacks

--Ability to become a trusted partner that understands security implications to the business

--Enablement of a new revenue stream on top of existing IP VPN service delivery network

--Ability to take advantage of core assets for new service and differentiation

--Ability to build, then grow -- providers do not need to make large CAPEX investments to start delivering protection services

Business customer benefits include:

--Proactive, real-time DDoS mitigation, through which the service provider detects attacks in real-time (day-zero) and mitigates the impact on the network rapidly, grounding the attack as it mounts and before network resources are overwhelmed o·ver·whelm  
tr.v. o·ver·whelmed, o·ver·whelm·ing, o·ver·whelms
1. To surge over and submerge; engulf: waves overwhelming the rocky shoreline.

2.
a.  

--Enhanced protection of critical assets in the data center, including web servers, DNS/DHCP servers and other mission-critical elements

--Business continuity assurance through upstream protection that keeps network resources active and usable

The Cisco DDoS protection solution portfolio incorporates new Cisco service modules that further integrate functionality into the infrastructure, along with interoperable, partner-developed products, including:

--The Cisco Traffic Anomaly A deviation from the normal traffic pattern. An intrusion detection system (IDS) may look for unusual traffic activities, such as a flood of UDP packets or a new service appearing on the network.  Detector XT appliance and the new Cisco Traffic Anomaly Detector Service Module for the Cisco 7600 Series Router and Cisco Catalyst(R) 6500 Series Switch for anomaly detection An approach to intrusion detection that establishes a baseline model of behavior for users and components in a computer system or network. Deviations from the baseline cause alerts that direct the attention of human operators to the anomalies. See IDS and anomaly.  

--The Cisco Guard XT 5650 appliance and the new Cisco Anomaly Guard Service Module for the Cisco 7600 Series Router and Cisco Catalyst 6500 Series Switch for anomaly mitigation

--Arbor Networks' Peakflow SP option for intelligent traffic and routing analysis and network-wide monitoring and detection

Arbor arbor

Garden shelter providing privacy and partial protection from the weather, most commonly a lightweight, latticed framework (trellis) of wood or metal with interlaced branches of vines or climbing shrubs trained over it.  Networks, a Cisco Technology Developer Program Partner (CTDP CTDP Cisco Technology Developer Program
CTDP Certified Training and Development Professionals ), provides a solution that utilizes NetFlow data from Cisco devices for network-wide relational modeling See relational database.

relational model - relational data model , anomaly detection and intelligent mitigation management that alerts the Cisco Guard in the scrubbing centers.

Enhancements to Cisco DDoS Protection Solution Elements

New software for the Cisco Traffic Anomaly Detector XT appliance and the new Cisco Traffic Anomaly Detector Service Module for the Cisco 7600 Series Router and Cisco Catalyst 6500 Series Switch, integral components of the solution delivery, gives business customers added service control and simplifies service deployment for providers. The new release, Anomaly Guard and Detector Release 5.0, enhances the Detector as a customer-premise option for the managed service. While monitoring the network for attacks, the new software continuously "learns" and automatically adjusts the "normal behavior" baseline. It then automatically communicates these changes, along with changes in customer-defined policies to the provider.

This gives business users a level of service control and simplifies providers' operations. The software also eases deployment by independently rerouting traffic to the Guard and automatically activating the appropriate policies for mitigation. It further strengthens protection by automatically extracting content signatures that may be present in attacks for high-performance packet filtering See packet filter. , supplementing the core behavioral-based defenses.

"Security is top of mind for end customers today, and this DDoS Protection solution helps service providers address this critical need in a comprehensive, proven manner," said Mick Scully, vice president of product management for the security technology group at Cisco. "Security is also integral to a provider's ability to deliver all of its services reliably. To address this, Cisco is incorporating unique technologies and solutions throughout our IP Next-Generation Network architecture, helping to secure the very foundation of our service provider customers' businesses."

For more information about the Cisco Distributed Denial of Service (DDoS) Protection solution, please visit the Cisco web site at www.cisco.com/go/cleanpipes and www.cisco.com/go/nfp.

About Cisco Systems

Cisco Systems, Inc. (NASDAQ:CSCO), the worldwide leader in networking for the Internet, celebrates 20 years of commitment to technology innovation, industry leadership, and corporate social responsibility. Information about Cisco can be found at http://www.cisco.com. For ongoing news, go to http://newsroom.cisco.com. Cisco equipment in Europe is supplied by Cisco Systems International BV, a wholly owned subsidiary Wholly Owned Subsidiary

A subsidiary whose parent company owns 100% of its common stock.

Notes:
In other words, the parent company owns the company outright and there are no minority owners.  of Cisco Systems, Inc.

Cisco, Cisco Systems, and the Cisco Systems logo are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the United States United States, officially United States of America, republic (2005 est. pop. 295,734,000), 3,539,227 sq mi (9,166,598 sq km), North America. The United States is the world's third largest country in population and the fourth largest country in area.  and certain other countries. All other trademarks mentioned in this document are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. This document is Cisco Public Information.
COPYRIGHT 2005 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2005, Gale Group. All rights reserved. Gale Group is a Thomson Corporation Company.

 Reader Opinion

Title:

Comment:



 

Article Details
Printer friendly Cite/link Email Feedback
Publication:Business Wire
Geographic Code:1USA
Date:Jun 6, 2005
Words:1233
Previous Article:NexTone's Senior Vice President of Business Development & Marketing to Speak at SUPERCOMM 2005.
Next Article:Service Providers Moving Rapidly Toward Cisco IP Next-Generation Networks; New Solutions and Milestones Add Momentum to This Global Migration.
Topics:



Related Articles
Security- today and tomorrow. (Viewpoint).
Higher ed cybervigilance: now more than ever. (Special Section: Security).
Spirent announces enhanced security testing to protect networks from attacks.
Cisco extends leadership in integrated network security.
Cisco Systems to Acquire Riverhead Networks; Adds Distributed Denial-of-Service Protection to Security Portfolio.
Cisco Announces Integrated, Managed Virtualization for the Catalyst 6500 Firewall Service Module and New DDoS Attack Prevention Solutions.
P-Cube enables ISPS to detect and quarantine spam zombies.
Service Providers Moving Rapidly Toward Cisco IP Next-Generation Networks; New Solutions and Milestones Add Momentum to This Global Migration.
TerraWave Solutions and Cisco Sign Solution Technology Integrator Agreement; Wi-Fi Enclosures Protect Cisco Aironet(R) Products from Harsh...
Cyber extortion is now a very real threat--is your business at risk?

Terms of use | Copyright © 2012 Farlex, Inc. | Feedback | For webmasters | Submit articles