cool hit counter The global Internet is adopting HTTPS web security solutions also need to change with the times_Intefrankly

The global Internet is adopting HTTPS web security solutions also need to change with the times


有这样一家以色列公司,全世界几大支撑运营商的设备供应商都是它的合作伙伴。这几家在通信领域为竞争关系的世界级设备供应商的DDoS防护解决方案,均采用的这家以色列公司的DDoS防护技术。另外,某知名CDN网络分发厂商和防火墙厂商也使用的是它的DDoS防护技术,可见其技术之强。这家公司就是:

2017年12月,在Forrester第四季度的DDoS防护报告中,Radware的DDoS缓解解决方案在15个评判标准中获得了最高分数,得已进入领导者区域。 But just in October and November 2017, a DDoS defense vendor announced the cancellation of DDoS protection solution charges, and a well-known domestic cloud service provider also announced a 90% price reduction for DDoS high protection IPs, will this have a big impact on the DDoS protection market? And with the general trend of HTTPS, what can be done about cyber attacks with encrypted traffic?带着问题,安全牛记者近期采访了Radware亚太区总裁应文华

The simple brutality and high-end sophistication of DDoS

对于DDoS防护市场,应文华认为,降价策略对市场的冲击是肯定的,但不会很大。首先,什么样的价格就会有什么样的服务,对大型客户而言,效果不好的服务是没有意义的。再者,公有云上主要是中小企业,其降价政策主要是为了云本身的客户。最后,DDoS的攻击有简单粗暴也有高端复杂,前者基于带宽,如SYN Flooding。后者基于页面,如CC。因此在DDoS防护技术上非常突出的厂商,这种降价策略的影响并不大。

There is a common misconception in the DDoS protection space, many people simply see DDoS protection technology as bandwidth + distributed CDN, in fact, this view is very wrong. For example, a large number of accesses go to the authentication server, exhausting its resources, and the authentication server or the associated database server cannot scale in time to support the sudden burst of requests, in which case having unlimited bandwidth or a CDN is useless. And there's no point in having more bandwidth if the authentication server, the entry point, is down.

Radware的安全解决方案可自动识别攻击行为,自动生成恶意特征,自动配置和推送策略,将攻击阻断,是抗D领域唯一真正基于机器学习和大数据分析的安全厂商。

-- Wenhua Ying, President of Radware Asia Pacific

代理模式的缺陷

全球互联网大多数影响力较大的网站已经应用HTTPS,在加密访问的情况下,上网行为、恶意攻击、甚至是非法交易等流量,没有SSL/TLS解决方案的防火墙、IDS/IPS之类的安全网关,包括沙箱等,看不到加密流量的内容,只能Bypass。

SSL/TLS安全解决方案比较常见的是Proxy模式,在Proxy服务中将流量进行解密,然后对其进行检测,最后再还原,让流量通过。但这种Proxy模式存在两个问题,一是需要解密,因此Proxy服务器是一个潜在的网络安全风险,同时用户的隐私也成明文暴露;二是性能和成本问题,除了影响流量的吞吐效率以外,还需要额外增加许多的Proxy服务器。

This is not the case with Radware's SSL/TLS solution, which works by parsing the packet when the user first establishes a connection and then verifying it through a redirection mechanism. If it is normal access, the user is added to the whitelist and subsequent access requests from the user are allowed to pass without verification; if it is malicious traffic, it is added to the blacklist and prohibited from passing. Here, the checksum mechanism is at the heart of Radware's technology and holds international patents.

与时俱进 云是必然的方向

Radware, which started as an application delivery company 16 years ago, has entered the Chinese market and established应用交付+应用安全的产品发展方向。反观国内外其他应用交付设备厂商,只是在近几年才开始转向应用安全,在动作上已经落下了几个身位。

由于云计算的爆发,未来给用户提供服务的模式也在随之变化。为此,Radware中国区成立了一个特别任务小组,考虑如何整合已有的资源,去适应和利用这些变化,以更好的把技术落地,更好的服务用户。如之前在亚太区只有日本和香港两个云清洗中心,但今年又在韩国和澳大利亚分别建立了云清洗中心,总数达到了四个。

在云安全方面,Radware拥有一个非常具有特色的产品——Cloud Malware It does not need to install a client, but only needs to do automated behavior analysis based on the access logs within the enterprise, based on machine learning, combined with its own security data and security models, which can find abnormal behavior or even zero-day attacks, and can link with security gateway products after finding the problem. The technical core of such products lies in their algorithms and analysis engines, and Radware has more than 70 patented algorithms for machine learning and behavioral analysis technologies in zero-day malware detection.

自主可控背景下的外企发展策略

在谈及亚太区的市场异同时,应文华表示,澳大利亚、新加坡、香港、日本的市场类似,比较西方化,很舍得花线在优质的服务上。而印度和中国市场则比较认设备,不愿意在服务上投入,比如云上的SaaS就很难得到用户的接受。但中国的用户正在逐渐开始认可服务的价值。最后是韩国,虽然在体制上也比较西方化,但有一点与中国相像,本地品牌占主导力量。

应文华认为,虽然国内自主可控的大形势,以及一些政府部门和重点行业的采购规定,在一定程度上限制了外企在中国市场上的发展,但外企也可以基于技术领先的优势,并借助国内一些合作伙伴的力量,在规则允许的情况下,继续为国内的用户提供优质的产品和服务。

How to bring their unique value to users without violating local policies is a topic and challenge for all foreign companies.

security bull review

Radware有三个明显的优势:一是技术方面,更擅长精细独到的处理问题能力;二是本土化,16年的国内市场生涯,人员文化已经充分的溶入国内;三是战略方向,十几年前就确立了由应用交付走向应用安全的方面,与同类厂商相比占有非常大的先发优势。


Recommended>>
1、Linquist take a look Charging like this is dangerous and can steal all the information from your phone in minutes
2、Dominica actively creating a global blockchain and digital currency special zone
3、AngularJS and Angular Release Roadmap
4、polish special governance a card management problems
5、Do you crave power One line of code bug dropped 600 million RMB

    已推荐到看一看 和朋友分享想法
    最多200字,当前共 发送

    已发送

    朋友将在看一看看到

    确定
    分享你的想法...
    取消

    分享想法到看一看

    确定
    最多200字,当前共

    发送中

    网络异常,请稍后重试

    微信扫一扫
    关注该公众号