Protect Network Traffic With Latest Security GearProtect Network Traffic With Latest Security Gear

Riverhead Networks monitors distributed denial-of-service threats

information Staff, Contributor

May 18, 2002

2 Min Read
information logo in a gray background | information

Distributed denial-of-service attacks are among the most difficult Internet threats to thwart and can be costly if they put an E-commerce site out of commission. Web sites such as eBay and Yahoo have suffered these attacks, which flood the site with page requests and prevent legitimate traffic from accessing it. To fight such attacks, Israeli startup Riverhead Networks this month is expected to unveil security gear that uses a new approach to help large companies and Internet service providers defend themselves.

Cervalis Inc. started testing Riverhead's Guard hardware and software device in January, says Edward Rabinovitch, VP of global networks and infrastructure operations at the Stamford, Conn., outsourcer and managed hosting vendor. He chose Guard over competitors because the software doesn't attempt to dynamically reconfigure customer access lists to sidestep an attack, which many anti-denial-of-service-attack applications do. That approach can end up blocking good traffic. Guard passively monitors network traffic and stops only malicious traffic. "We created our own denial-of-service attack, and Guard stopped the illegitimate traffic while legitimate users could still get through," he says. During the simulated attacks, traffic moved without problem when Guard was running; without it, traffic was delayed up to five minutes.

Cervalis is waiting for the final code before deciding whether to run Guard on the networks that support its customers. Until then, he says Cervalis will continue using the test version to protect its own Web site. Riverhead Guard is expected to be available on May 28; pricing will start at $80,000.

Guard can be configured to monitor traffic from a variety of points on a network, says Anat Bremler-Barr, chief scientist at Riverhead. It can sit adjacent to a router or switch and watch traffic from a port not used for normal network traffic, so it doesn't interfere when no attack is under way. Once an attack occurs, traffic is diverted to Guard, where it's identified and cleansed; only legitimate traffic is passed through.

Read more about:

20022002

About the Author

information Staff

information Staff

Contributor

See more from information Staff
Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.
SIGN-UP

You May Also Like

More Insights
Webinars
More Webinars
Reports
More Reports

Editor's Choice

A group of smiling college graduates celebrating their graduation.
IT Leadership
Why Liberal Arts Grads Could Be the Best Programmers of the AI Era
Why Liberal Arts Grads Could Be the Best Programmers of the AI Era

Jan 17, 2025

Flame front of the Eaton Fire on the first night during the January 2025 California wildfires in Altadena and Los Angeles
IT Sectors
How Tech Supports the Emergency Response to the LA County Wildfires
How Tech Supports the Emergency Response to the LA County Wildfires

Jan 16, 2025

Graphic Pop Art style Illustration of Keanu Reeves as NEO from the film, The Matrix
IT Infrastructure
Y2K and Infrastructure Resilience 25 Years Later
Y2K and Infrastructure Resilience 25 Years Later

Jan 7, 2025

Young businessman working on a virtual screen of the future and sees the inscription: Now hiring
IT Leadership
Help Wanted: IT Hiring Trends in 2025
Help Wanted: IT Hiring Trends in 2025

Nov 20, 2024

Cobol programming language software development concept on vitual screen.
IT Leadership
Untangling Enterprise Reliance on Legacy Systems
Untangling Enterprise Reliance on Legacy Systems

Jan 21, 2025

Webinars
More Webinars
White Papers
More White Papers
Reports
More Reports