CORDIS
EU research results

CORDIS

English EN

Revolutionary Non-Disruptive DDoS Testing Technology that significantly strengthens resistance to DDoS attacks and provides ongoing visibility on identified DDoS mitigation vulnerabilities.

English EN

DDoS Radar – A novel security system to revolutionise DDoS mitigation

Distributed denial-of-service (DDoS) attacks are growing in size, sophistication and diversity, posing a major threat to businesses of all stripes. As DDoS mitigation technology is inherently vulnerable, DDoS testing is critical to ensuring that DDoS vulnerabilities (DDoS Mitigation gaps) are identified and resolved.

SECURITY

DIGITAL ECONOMY

© DD Images, Shutterstock
DDoS attacks are one of the leading cybersecurity threats to businesses today, taking down websites and services rendering them incapable of serving legitimate users. The downtime or latency caused by DDoS attacks significantly impacts delivery of essential services from e-commerce, banking, online payment and insurance to social media and critical infrastructure (e.g. public transport, stock exchanges). Consequently, understanding how DDoS attacks work and how to improve defences against them is crucial for enterprises. With EU funding of the project DDoS Analyser, Israeli company MazeBolt Security unveiled the DDoS Radar, a revolutionary DDoS testing solution that complements DDoS mitigation systems to optimise mitigation to previously unattainable levels. Mind the DDoS Mitigation gap In general, DDoS mitigation technology is designed to automatically block DDoS attacks. “However, data from hundreds of DDoS tests we have conducted show that when testing for the first time DDoS mitigation solutions fail an average of 48 % of the tests – exposing companies to complete downtime or service disruption,” notes Matthew Andriani, CEO and founder of MazeBolt Security. In a nutshell, DDoS Mitigation, unlike other network devices, is inherently vulnerable. In order to work effectively, it needs to be perfectly configured to the network it is protecting. “There are no plug-and-play DDoS mitigation solutions to DDoS attacks. Mitigation configuration settings need to be continuously fine-tuned and can only be done so with DDoS testing – which up to today has been disruptive to IT operations, significantly limiting a company’s ability to strengthen their DDoS mitigation,” explains Andriani. DDoS Radar: Non-disruptive 24/7 continuous DDoS testing “Because Traditional DDoS penetration testing is disruptive to the tested IT operations, it can only be run during maintenance windows, thus limiting testing to once or twice a year – leaving companies mostly vulnerable to DDoS attacks,” outlines Andriani. MazeBolt’s DDoS Radar is based on proprietary revolutionary DDoS testing technology that allows companies to test their environments against DDoS attacks continuously 24/7 with zero disruption to ongoing operations. The DDoS Radar revolutionises companies’ ability to close their DDoS vulnerabilities to levels of 2 % and under. The DDoS Radar is a hybrid solution combining cloud infrastructure and an on-premise device to ensure the non-disruptive nature of its DDoS testing services. Before launching a DDoS attack simulation, the cloud component announces the DDoS attack simulation information to the on-premise component (i.e. type of DDoS attack simulation, target destination and volume of DDoS attack simulation traffic). If the company’s DDoS mitigation does not successfully mitigate the DDoS attack simulation, the traffic is identified by the DDoS Radar’s on-premise device and is immediately reported to the cloud component that stops the DDoS attack simulation and registers the DDoS attack vector as not mitigated. If at any time the DDoS Radar’s cloud component identifies a deviation from the baseline response time established before the DDoS attack simulation – with low millisecond sensitivity – the DDoS attack simulation is immediately terminated. This cut-off mechanism eliminates any chance of disrupting ongoing operations. MazeBolt revolutionised DDoS threat assessment with the ground breaking non-disruptive DDoS Radar that provides the industry with a much-needed complement to DDoS mitigation that sets a new standard for DDoS mitigation effectiveness.

Keywords

DDoS Analyser, DDoS attack, DDoS mitigation, DDoS Radar, DDoS testing, Mazebolt Security, vulnerabilities, mitigation gap

Project information

Grant agreement ID: 816545

Status

Closed project

  • Start date

    1 June 2018

  • End date

    30 November 2018

Funded under:

H2020-EU.3.

H2020-EU.2.3.

H2020-EU.2.1.

  • Overall budget:

    € 71 429

  • EU contribution

    € 50 000

Coordinated by:

MAZEBOLT TECHNOLOGIES LTD