Managed DDoS Protection

Behavioral-Based Detection 

Including advanced machine learning algorithms that analyze traffic, learn what constitutes legitimate behavior, and automatically block malicious attacks. 

Automatic Signature Creation 

With patent-protected, real-time signature-creation technology, we use the only cloud service that can automatically generate protection against zero-day and unknown DDoS attacks. 

Multiple Deployment Options 

 Our managed DDoS protection service can be delivered in On-Demand, Always- On or Hybrid configurations and can be custom-tailored to suit any customer need, network topology, or threat profile. 

By partnering with Radware, CBTS’ Managed DDoS Protection Service is backed by a worldwide network of 13 scrubbing centers, with 5TBs of mitigation capacity (and growing). Radware’s scrubbing centers are globally connected in full mesh mode, using Anycast-based routing. This ensures that DDoS attacks are mitigated closest to their point of origin and provides truly global DDoS mitigation capable of absorbing even the largest volumetric attacks. 

On-Demand 

• No added latency in peacetime; traffic diverted only upon attack detection. 
• Allows lowest cost, cloud-on simple deployment. 
• Best suited for latency-sensitive applications and organizations that are infrequently attacked. 

Always-On 

• Always-available, real-time, cloud-based DDoS protection. 
• Provides immediate protection but with small added latency. 
• Best suited for applications hosted on the cloud and for organizations that constantly come under attack. 

Hybrid 

• Combines on-premises devices backed by cloud-based scrubbing capacity. 
• Real-time protection and minimal latency in peacetime. 
• Recommended security best practice; best suited for data center protection. 

Complete DDoS protection coverage 

• Behavioral-based detection using advanced, patented machine learning algorithms to protect against known and unknown threats. 
• Zero-day protection against network- and application-layer DDoS attacks, such as Burst, Dynamic IP, DNS, and other attacks. 
• Unique protection against SSL-based attacks without requiring customers to provide full SSL certificates and without adding latency in peacetime. 
• Extensive compliance options and certifications, unparalleled by any rival, including industry-specific certifications such as PCI and HIPAA, as well as cloud security standards such as ISO 27002, ISO 27017, ISO 27018, ISO 27032, and others. 

White Glove support 

• Expert monitoring service of pre-attack alerts are received from Radware’s library of cyberthreat advisories, gathered by continuously mining data across the web and darknet, and post-attack forensic analysis and recommendations. 
• Notification, action and remediation by CBTS based off SLA. 
• Support from our state-of-the-art Enterprise Network Operations Center staffed by our highly certified engineers and operations experts. 
• Backed by the industry’s most granular service-level agreement (SLA), with detailed commitments for time to mitigate, time to detect, time to alert, time to divert, consistency of mitigation and overall service availability. 

Flexibility in deployment 

• On-Demand, Always-On and Hybrid deployment options to suit any customer need or network configuration. 
• On-demand protection for applications hosted on public clouds, such as Amazon Web Services (AWS) and Azure, providing both network- and application-layer protection, based on Radware’s behavioral-based detection. 
• Seamless integration between premises-based and cloud-based components. 
• Protection for every asset, from a single IP address to an entire data center. 

Eliminate the burden of monitoring and management 

• Focus on strategic initiatives that improve your bottom line. 
• Manage budget while improving your security posture. 
• Gain access to skilled security professionals.