St. Louis, Missouri – (The Hosting News) – December 19, 2005 – Global IT utility services provider, SAVVIS, Inc., has launched its latest managed security service: SAVVIS network-based distributed denial
of service (DDoS) attack mitigation. The new cloud-based service offers DDoS
attack mitigation to any of SAVVIS’ 5,000 network and hosting customers.
The new service is network-based, which means that SAVVIS’ customers are not required to purchase any equipment or software. The DDoS filtering equipment, which relies on advanced detection and mitigation technologies, is located on SAVVIS’ private wide area network backbone, which extends to 47 countries and serves more than 25 percent of the world’s Internet traffic.
The new service is powered by Arbor Networks’ PeakFlow network anomaly-detection products that have been deployed throughout the SAVVIS network. The service also employs Cisco’s Guard XT device to mitigate the attacks. By performing comparative analysis of baseline traffic patterns, these systems are able to quickly and efficiently recognize the aberrant data flow signatures that are characteristic of DDoS and worm attacks.
Customer traffic is analyzed at SAVVIS’ peering-router level, the point at which SAVVIS receives network traffic from other peering partners. Because the traffic is examined at this level, malicious traffic can be eliminated before customers are billed for excess bandwidth. This system is currently protecting a variety of network-dependent enterprises, including a major banking corporation and a major media company.
According to Dan Golding, Senior Analyst with The Burton Group, ”Denial of service mitigation is not a trivial technical problem; many solutions place this capability inside the enterprise perimeter, too close to the victim to provide any real protection. Only a network-based denial of service mitigation solution can provide realistic protection to enterprise resources and capabilities.”
The service is available in two packages – Basic and Enhanced. The Basic service is a cost-effective DDoS option that protects service subscribers within 15 minutes of SAVVIS being notified by the customer of an attack. The Enhanced service offers automatic detection and a five-minute response time. Both services are sold in increments protecting 1Gb of “attack time” traffic. Additional levels of throughput protection may be added as needed.
Network-based DDoS Mitigation is the newest addition to SAVVIS’ growing portfolio of managed security services that are tailored to meet the requirements of the company’s diverse customer base. These services can be placed in three primary categories:
– SAVVIS Security Utility — security solutions that deliver virtualized “on-demand” firewall and intrusion detection for hosted infrastructure, in-network firewalling, and DDoS and worm attack detection and mitigation for the wide area network.
– Dedicated Security Services — a layered combination of industry-leading technologies that provide intrusion detection and prevention services, managed network perimeter security, access and authentication, and scanning and analysis services.
– Security Consulting Services — a complete set of security and compliance services that cover every aspect of the security cycle, from assessment and design to implementation and management including security assessment services, compliance assurance management, remediation services, security architecture design and implementation and security policy development.
Chris Richter, Vice President and General Manager, Security Products and Services, of SAVVIS stated, ”DDoS attacks can bury a network and crush a web server in a matter of minutes. SAVVIS offers protection against these attacks with an easily implemented, cost-effective service that is delivered via our global network to both network and hosting services customers worldwide. With SAVVIS, customers can have peace of mind and avoid the headaches and expense of buying and maintaining their own mitigation hardware.”
To learn more about SAVVIS, please visit: www.savvis.net.