Radware: Streamlining Network Flows for Defense

Follow Radware on :

David Aviv, CTO & VP Advanced Solutions
At the core of every great business application is a robust network that can redefine communication and deliver seamless connectivity. However, the constant barrage of record-breaking cyber-attacks on the networks has pressured organizations to seek technology partners that can protect their data and secure the overall network infrastructure. Although organizations have largely invested in ‘classic’ software-defined networking (SDN) solutions, protocols (OpenFlow) and Controllers (ODL), it hasn’t really paid off. To provide the best level of network protection, organizations today are on the lookout for state-of-the-art networking applications that offer secured flow of web traffic, better provisioning of networking services, network visibility, scalability, and virtualization.

One company that understands these requirements at the granular level is Radware, a prominent cybersecurity and application delivery solutions provider that is stirring a revolution in the networking landscape with the new concept of DefenseFlow.

DefenseFlow is a network distributed denial of service (DDoS) attack prevention and cyber control application focused on detecting and mitigating network-wide, multi-vector attacks. DefenseFlow provides new ways to harmonize security policies and support use-cases that require real-time networking decisions based on various security events and operational playbooks. “The ‘classical’ SDN use-cases are natively supported by programmable SDN Controller APIs to provide the network telemetry needed for detection of network anomalies,” states David Aviv CTO & VP Advanced Solutions of Radware.

Radware’s DefenseFlow enables users to program the network to detect any security breaches or triggers (internal or external) and customize the network behavior based on any policy playbook. DefenseFlow also provides agility and the ability to automate network-wide mitigation services. The ecosystem that can be spanned with Radware’s DefenseFlow control-plane is almost unlimited and it can be applied to orchestrate network flows based on any operational policy playbook.

Another capability recently added is the ability to extend the coverage to cloud scrubbing services. With the help of defense policies for peak protection, attacks can be immediately mitigated at the origin preventing it from spreading across the globe.
This unique capability to orchestrate security policies along various security chains: premise-cloud, premise-scrubbing and premise-scrubbing-cloud is a key factor that sets Radware apart from the competition.

Our mission is to be at the forefront of SDN technology advancements and help businesses secure their network

The competitive edge of Radware’s networking solutions is based on four pillars. The first one, the data-plane, is the backbone of the auto mitigation process that is integrated with self-learning algorithms to enable a distributed zero-touch deployment. Second is the defense automation engine that utilizes the self-learning engines in the Radware devices and automates the entire mitigation process based on customized policy playbooks. The third one is the ability to create various defense chains across networks to ensure a holistic defense policy wherever the protected workload is deployed. The fourth pillar is adding cyber-threat intelligence (CTI) layer based on various enrichments and machine learning technologies which enables the network to continue to act even smarter over time. “These four pillars add up to a unique integrated solution with a significant competitive advantage, guaranteeing our customers a best in class solution,” states Aviv.

All of Radware’s solutions are built to optimize business operations while providing application scalability, elasticity, and security on multiple tiers. This unique capability ensures that the auto-mitigation process is triggered during the attack detection event and controlled by the DefenseFlow to distribute attack policies based on the self-learned signatures. This provides Radware customers with secure delivery of traffic based on real-time closed-loops to ensure SLA matrices.

With the aim of taking the company to a new zenith, Radware intends to continue investing in three delivery modes: Cloud delivery with new services (XaaS), new physical and virtual footprints, and a new software delivery mode. In conclusion, Aviv says, “Our mission is to be at the forefront of SDN technology advancements and help businesses secure their network.”

Radware News

Radware Signs Multi-Million Dollar Deal for Hybrid Cloud DDoS Protection With Global Leading SaaS Provider

MAHWAH, N.J.: Radware® (NASDAQ: RDWR), a leading provider of cyber security and application delivery solutions, announced that it signed a three-year, multi-million dollar hybrid cloud DDoS protection deal with a global enterprise SaaS provider. The customer relies on Radware’s DefensePro®, Alteon®, Cloud DDoS Protection Service and SSL protection across more than 30 of its data centers worldwide with a fully managed solution by Radware’s highly trained Emergency Response Team, including rapid-response solutions during major attacks.

Anna Convery- Pelletier, Chief Marketing Officer for Radware said, “This SaaS provider helps companies of all sizes and industries perform at optimal efficiency with critical cloud-based tools that support business planning, sales, human resources, finance and accounting functions. It processes massive data volumes, and its business is rapidly growing. The customer turned to Radware to help scale its operations, lower operating expenses, and provide a wide breadth of coverage and protection based on a history of trust, and Radware’s proven track record in comprehensive hybrid-cloud attack mitigation.”

“Radware maintains direct relationships with many of the world’s top SaaS providers, which have come to increase their reliance on our solutions,” said Roy Zisapel, CEO of Radware. “Our industry leading data center security capabilities, ability to detect and respond automatically, flexible deployment options and customer centric approach allow us to become strategic to their operations. Our hybrid DDoS solution enabled this customer to scale its attack mitigation protection along with its business growth.”

Radware’s family of DDoS security solutions provides integrated application and network security for a best of breed, multi-layered security architecture and DDoS attack prevention. The solutions provide the highest protection accuracy with patent-protected behavioral based detection to protect legitimate traffic and real-time signature creation for zero-day attack protection. Radware’s hybrid DDoS protection integrates always-on detection and mitigation (on-premises or in the cloud) with cloud-based volumetric DDoS attack prevention, scrubbing, and 24x7 Emergency Response Team (ERT) support. Radware’s Defense SSL protection supports all types of encrypted attacks, inkling TCP SYN Floods, SSL Negotiation Floods, HTTPS Floods, and Encrypted Web Attacks.

Copa Airlines Partners With Radware to Prevent Cybersecurity Attacks

Two years ago, Copa Airlines’ frequent flyer program website was a victim of persistent distributed denial of service (DDoS) attacks. Once bitten, twice shy, Copa knew it needed more robust and advanced cybersecurity capabilities, so the airline turned to Radware, which provided a fully managed cloud web application firewall (WAF) and Cloud DDoS solution that was customized to incorporate policies specific to Copa Airline’s security needs. The solution protects the airline’s main website and frequent flyer loyalty program sites, as well as its network infrastructure.

“Whether that takes the form of our passenger’s physical safety or the protection of their personal information, we treat security as a core value.” – Alex Tarte, Copa Airlines

While DDoS attacks often make headlines, modern hackers’ preferred attack vectors trend towards cross-site scripting (XSS) and SQL injection, according to a December 2018 study conducted by HackerOne. A WAF defends against both of these types of attack by using rules around “conversations” with the site as a sort of defensive weapon.

“Security is part of our DNA at Copa Airlines. Whether that takes the form of our passenger’s physical safety or the protection of their personal information, we treat security as a core value,” said Alex Tarte, Copa Airlines’ information security and risk manager and CISO, in a press release. “This certainly extends to our IT infrastructure. Maintaining a balance between customer experience and security can be tricky, but we have a strong cybersecurity program.”

Tobias Santoyo Cardoso, regional manager at Radware, addressed the unique challenges in building a cloud security solution for an airline client, from the multiple layers of testing to various integrations that must be considered: “Each stakeholder had to be certain that the solution could meet their needs. Further, airlines tend to work with a lot of third party providers, so we had to ensure that our solution was compatible with many external vendors in addition to the airline’s web and IT teams.”

A cloud-native deployment means that no hardware was required to put Radware’s solution into action. “Adding Radware’s WAF and DDoS services as the foundation of our operations was frictionless,” Tarte said. “We can handle large traffic volumes without any negative impact on our customer experience. It’s hassle-free.”


Sunnyvale, CA

David Aviv, CTO & VP Advanced Solutions

Radware is a provider of application delivery and cybersecurity solutions for virtual, cloud, and software-defined data centers. The company solutions portfolio delivers service level assurance for business-critical applications while maximizing IT efficiency. Radware solutions empower more than 10,000 enterprise and carrier customers worldwide to adapt to market challenges quickly, maintain business continuity, and achieve maximum productivity while keeping costs down. Radware’s corporate headquarters are located in the U.S. (Mahwah, NJ), and international headquarters are located in Tel Aviv. Global presence includes offices in the Americas, Europe, Middle East, Africa, and the Asia Pacific regions