No matter what your current level of cybersecurity knowledge is, these slides created by EMA Research and A10 Networks will provide valuable insights into the latest trends and empower you with the best practices in cloud and web application security.
Download to learn more about:
- The top threats that pose a risk to your organization and how to mitigate them
- The difference between buzz and hype in today’s security approaches, and how this can be used to help your organization
- A discussion of Zero Trust, web application security, DDoS protection, encryption, and more for the hybrid cloud world
Handwritten Text Recognition for manuscripts and early printed texts
Navigating Today’s Threat Landscape: Discussing Hype vs. Reality
1. Navigating Todays Threat Landscape
Christopher M. Steffen, CISSP, CISA. - Vice President – Research, EMA
Paul Nicholson - Sr. Director of Product Marketing, A10
Sept. 2023
Discussing Hype vs. Reality
9. Threshold-based blocking
Events page provides details of an event associated
with IP including
• Country of origin
• Host
• User agents
• Timeline of actions
• When the IP address was identified as
suspicious
• How many requests were received from the
IP before it was flagged
• When the IP was flagged
• How many requests were blocked or logged
• “Sample Request” highlighting a single
request
• and more…
Filter selection to drilldown the events
Granularity in Context
10. A10 Next-Gen WAF on Thunder ADC
App Responses
Fastly Cloud
Engine
Fastly Unified
Management Console
User Requests
Metadata
(Async Push)
Dynamic App
specific detection
Events
Alerts
Metrics
Dashboards
Configuration
Legitimate User Requests
API
Communication
App Server 2
App Server 1
SLB
TLS Offload
AAM
DDoS Protection
Thunder
ADC
Next-Gen WAF
App Responses
Malicious Requests
Blocked
Threat Feeds
NLX and External Sources
11. Mastering Multi-cloud Complexity: Hybrid Control
Harmony
On-Prem
Data Center
Hosted/
Private
ADC ADC ADC ADC ADC
ADC
ADC
#WFH
Users
#Office
Applications &
Systems
More…
Public Clouds
Private Clouds
Other
13. Hosting DDoS Scrubbing Service
Results (90 days after deployment)
“The ability to automate and scale the
delivery of differentiated services could
have a major impact on the quality and
economics of DDoS scrubbing services.
A10’s innovations are significant
advancements”
Bart van der Sloot, Managing Director of
Leaseweb Network
• 97,77% of attacks were mitigated through scrubbing
• Increased Net Promoter Score (NPS)
• Overall ~11% reduction in support tickets
14. A10’s Intelligent Automation Protection Cycle
Detection
Traffic
Orchestration
Mitigation
Escalation
Zero-day Pattern
Recognition
DDoS Threat
Intelligence
Auto
Reporting
Auto
Configuration
Incident Report
Generation
Discovery and
Peacetime
Profiling
Before During the Attack After
15. AI/ML Defenses Empower Zero Trust Security
DDoS Defense with Zero-day Automated Protection (ZAP)
Industry’s Fastest Automated Response to DDoS Attacks
Protected
Service
Machine Learning-based
Pattern Detection
Thunder TPS
Normal Random Content
Packet Filtering
DDoS Bot
Reflector
Legitimate User
Distinct Content
Pattern
Spoofed
Request
Distinct Content
Pattern
16.
17.
18.
19.
20. By the Numbers
PP Infoservis-Link –
2M Apple Remote Desktop
(ARD) requests
Secretariat of the Cabinet of
the Ministers of Ukraine –
600,000 Network Time
Protocol (NTP) requests
2M
Requests
34x
Amplification
100x
Less Weapons
ARD amplification value
of >34 times original
request
30,622 ARD weapons
tracked – 10% could
generate 3.2TB, 50% 16TB
ARD, Memcached, and
CLDAP less common -100x
Portmap v 1200 CLDAP
Memcached amplification
51,000x – 2016 GitHub
attack 1.35Tbps
24. CRN Security 100:
The 20 Coolest
Network Security Companies
of 2023: #2
Leading Lights 2023
Finalist: Most Innovative
Cloud Product
or Service — A10 Defend
Interop Best of Show Special Prize:
Security (Targeted Threat/Cyber
Attack Countermeasures)
Category — A10 Defend
Future Security Awards:
DDoS Protection
Vendor of the Year
Cyber Defense Magazine:
DDoS Protection
TLS/SSL Decryption
Leading Lights:
Company of the Year
(public)
San Francisco
Business Times: #9 Largest
Cybersecurity Co.
Thank You
Market Leader: DDoS Protection
for Data Centers, Hybrid Cloud
Application Security, Service
Provider Infrastructure Security
and Zero Trust ETM
(Encrypted Traffic Management)