Verisign expands cloud-based DDoS protection

Citing a rise in the number and scope of distributed denial of service (DDoS) attacks across the Internet, Verisign is expanding its cloud-based DDoS protection service to cover small and midsize businesses that are increasingly frequent targets.

Until now, Verisign has been offering a high-end DDoS protection service to major financial services firms. Now, Verisign is taking that same set of home-grown DDoS detection and mitigation tools to a broader market.

BACKGROUND: The DDoS Hall of Shame

Verisign's DDoS Mitigation Service is available immediately to companies at a starting point as low as $35,000 per year, plus additional charges should an attack occur that is larger than 1Gbps. In addition to this proactive DDoS service, Verisign is offering a reactive service that allows a small company to call Verisign after an attack has occurred to stop it in the cloud before it reaches a particular website.

"We've had this at the very high end, but now we've changed the way we implement it," explains Ben Petro, senior vice president of network intelligence and availability at Verisign. "We've automated most of the process so its very, very low touch, which helps us" reduce the price, he adds.

Verisign has been quietly selling its DDoS Mitigation Service for several months, and has attracted dozens of customers.

"More than a third of our customers are name-brand larger companies that do hosting or provide Internet [services] ... another third are financial services and professional services firms and the other third are outside e-commerce in traditional fields like healthcare,'' Petro says.

Petro says it will be cheaper for companies to use a cloud-based DDoS mitigation service than it would be to purchase their own hardware from companies such as Cisco or Arbor Networks and hire the staff to operate this equipment. He says a typical onsite DDoS system will cost more than $100,000 for the equipment and requires up to 11 personnel to operate around-the-clock.

DETAILS: Has progress been made in fighting DDoS attacks?

In a recent survey of 225 IT executives in the United States, Verisign found that an increasing number were concerned about DDoS protection: 78 per cent were extremely or very concerned about DDOS attacks, and 71 per cent that didn't have a DDoS system planned to implement one in the next year.

What's driving the interest in anti-DDoS solutions? A rise in the number of attacks and the size of the attacks. Nearly two-thirds -- 63 per cent -- of the respondents to Verisign's survey said they had received a DDOS attack in the last 12 months. Even worse, 11 per cent said they had been hit six or more times.

"A 50 megabit/sec attack used to be a big deal. Now we're seeing 84 gigabits of sustained traffic. No enterprise on the planet can withstand the bandwidth capability for that attack," Petro says. "If you have a 10 megabit pipe, and you receive a 10.1 megabit attack, you're done. That's why DDoS has to be mitigated in the cloud."

The survey found that DDoS attacks accounted for 33 per cent of website downtime. Perhaps not surprisingly, more than two-thirds of respondents said their downtime impacted customers and half reported lost revenue as a result.

In related news, Verisign conducted separate research related to corporate DNS systems and found that companies that host their own DNS have an average DNS availability of 90.3 per cent -- nearly 10 per cent downtime -- while sites with managed DNS services have availability rates topping 98 per cent.

"The vast majority of corporate America is not prepared for the burden of what they are asking DNS to do," Petro says, adding a plug for Verisign's managed DNS service, which has 6,400 customers.

Read more about wide area network in Network World's Wide Area Network section.

Join the CSO newsletter!

Error: Please check your email address.

Tags VeriSignsecurityanti-malware

More about Arbor NetworksCiscoLANVeriSign Australia

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Carolyn Duffy Marsan

Latest Videos

  • 150x50

    CSO Webinar: Will your data protection strategy be enough when disaster strikes?

    Speakers: - Paul O’Connor, Engagement leader - Performance Audit Group, Victorian Auditor-General’s Office (VAGO) - Nigel Phair, Managing Director, Centre for Internet Safety - Joshua Stenhouse, Technical Evangelist, Zerto - Anthony Caruana, CSO MC & Moderator

    Play Video

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

More videos

Blog Posts

Market Place