Search This Blog
Showing posts with label cdn. Show all posts
Showing posts with label cdn. Show all posts

Wednesday, 23 July 2014

Denial of Service? What is it, and how can we defend against it? - Executive Overview

I've been asked to write a higher level version of some of my blogs.  Apparently my writing is too technical... 
According to Prolexic (now part of Akamai), DDoS, or Distributed Denial of Service attacks are on the rise, and getting smarter. 

If you rely on an internet facing website or service to either bring in, or communicate with customers, there's a good chance that service will be disrupted or greatly impacted in the near future.

 A Distributed Denial of Service attack is a method used by an individual or group that wishes to do harm against your company by essentially making your website inaccessible. New attack tools are readily available on the black market, and reports indicate that attack traffic is up 133% over this time last year.

By sending large quantities of traffic requests to your company website (tens of thousands of hits per second), the attackers basically overload the website's ability to respond and service legitimate customer requests.  If your website is down, you are not reaching customers, and not generating revenue.    Even a mild attack has the effect of slowing down your website to the point where customers may not want to use it. Corporate reputation may be at risk as a cause of such attack.

 The primary way that businesses can and are protecting themselves against these DDoS attacks is through the use of Content Deliver Networks.  

(for a more technical overview, please see my blog on CDN: Content Delivery Networks in the Context of Security).

A Content Delivery Network, such as Akamai/Prolexic augments your corporate website service by mirroring your website through many webservers distributed globally on their own network.  Should a Distributed Denial of Service attack be launched against your website, the effect of that attack is spread across many, many servers. The result is a greatly reduced impact on the service provided to you customers. In most cases, the net slowdown is almost immeasurable.

 Introducing a CDN service to front your Critical Corporate websites not only makes sense, but will greatly enhance your Disaster Recovery and Business Continuity programme.


 Should you find your website under attack right now, please look into the following service from Akamai.

Emergency DDoS Protection Service to Stop a Cyber Attack
References:

Posted by at No comments:
Labels: , , , , , , ,

Thursday, 18 July 2013

CDN: Content Delivery Networks in the Context of Security


In Information Security, we very frequently discuss the merits and challenges of Confidentiality and Integrity, but alas, Availability regularly takes the back seat...

 In today's world of Dynamic Web Content, 24/7 uptime requirements, expectations of immediately downloads, and Customers that come to you from anywhere around the world, Content Deliver Networks are fast becoming a commodity service.


 In our Enterprise Reference Architecture, we have all been taught to remove single points of failure.  A High Availability (HA) environment consists of:
  • Duplicate Network Switches with redundancy protocols
  • Duplicate routers with redundancy protocols
  • Duplicate firewalls with Heartbeat
  • Redundant ISP circuits from two different providers
  • redundant power supplies in all critical infrastructure, supplied from...
  • Redundant street power from two separate grids
  • Cluster or HA servers for critical systems such as Corporate Websites 
These are all wonderful in a fair and decent world.... However... 

Where your Company's Image / Brand / Reputation meets your consumers, at your WebServers... there a higher level of risk, and a greater requirement for un-interrupted availability.


Enter the Content Delivery Networks (CDN)

(from http://ikuna.com)

 Content Delivery Networks provide a Geographically Disperse Web Service to replicate the content of your Web Servers, and provide that to your Customers in a highly available mode.
 

Most of the CDN providers use a subscription based approach with initial trial periods to evaluate their services.   Almost all of them provide:


 Introducing a CDN service to front your Critical Corporate websites not only makes sense, but will greatly enhance your Disaster Recovery and Business Continuity programme.





Content Delivery Network Providers:  
(nowhere near a compete list, and with mergers and aquisitions... )



References:


Posted by at 1 comment:
Labels: , , , , , , ,
Subscribe to: Posts (Atom)