APSolute Immunity: Your Business’ Clear Choice for Proactive Network Security

Multilayer Intrusion Prevention and DoS Protection

Radware’s DefensePro™ is a real-time Intrusion Prevention System (IPS) that maintains your business continuity by protecting your IP infrastructure against existing and emerging network-based threats that can’t be detected by traditional IPS’ such as: application misuse threats, SSL attacks and VoIP service mis-use.

DefensePro features full protection against vulnerability-based threats through proactive signature updates, which safeguard against already known attacks including worms, Trojans, Bots, SSL-based attacks and VoIP threats. Unlike market alternatives that rely on static signatures, DefensePro provides unique behavioral-based and automatically, generated real-time signatures that prevent non-vulnerability-based threats and zero-minute attacks such as application misuse attacks, server brute force attacks, application and network flooding. And, DefensePro accomplishes this all, without blocking legitimate user traffic and without the need for human intervention.

With a pay-as-you-grow license upgrade approach and ease of management through ‘hands-off’ security features such as no-configuration and self-tuning, DefensePro is the industry’s leading IPS for best functionality, maximum affordability and ease of management.

APSolute Immunity Brain: Protection for Network, Server and Application Levels

DefensePro is the industry’s first solution to provide unparalleled security by offering adaptive, behavior-based protection capabilities at client, application and network levels. It immediately identifies and mitigates a wide range of threats (including non-vulnerability threats and zero-day attacks) by automatically generating real-time signatures. The real-time signature "brain" is an adaptive multi-dimension decision engine that deploys fuzzy logic technology for accurate attack detection and mitigation.

Adaptive Decision Engine

DefensePro’s behavior-based, self-learning mechanism proactively scans for anomalous network, server and client traffic patterns. When detecting an attack, DefensePro characterizes the attack’s unique behavior, establishes a real-time signature and creates a blocking rule. A closed feedback mechanism dynamically modifies the signature characteristics as the attack unfolds and mutates, protecting against even the most sophisticated attacks with a high degree of accuracy. DefensePro is unique in its ability to rapidly and accurately distinguish between three broad categories of behavior: legitimate normal traffic, attack traffic and unusual patterns created by legitimate activity.

A Solution for Every Need

As an in-line intrusion prevention, DoS protection and traffic-shaping solution, DefensePro is designed for enterprise core and perimeter deployment, data centers, university campuses and carrier backbones. It offers a wide range of defense capabilities including:

• Vulnerability-based attack protection (e.g., worms, Trojans, Bots, and SSL-based attacks)
• Non-vulnerability threats and zero-minute attack protection (e.g., application misuse attacks, server brute force attacks, and application and network flooding)
• Encrypted SSL attack protection
• VoIP infrastructure protection
• Access control
• Bandwidth management

DefensePro’s customized, ASIC-based hardware architecture allows you to pick the solution that best meets your needs:

• The DefensePro x20 series supports multiple segments for monitoring enterprise core and perimeter environments and scales from 600 Mbps up to 3 Gbps.
• The DefensePro x02 series supports single segment monitoring, offering the best price-to-performance for securing enterprise perimeter remote branches and scales from 100 Mbps to 500 Mbps.
• DefensePro 6000 supports multiple segment monitoring, offering DoS/DDoS flood protection and traffic shaping for securing e-Commerce and carrier links up to 6 Gbps.

Key Business Values

• Maintains business continuity even when the network is under attack
  • Ensures servers’ survivability and critical application (web, mail, FTP, DNS and more) availability even under network, server and application attack
  • Wide coverage against current and emerging, known and zero-minute threats including non-vulnerability attacks, application misuse, application and network flooding, pre-attack probes, worms Trojans, Bots, and more
  • Blocks attacks without blocking legitimate users’ traffic, so infected hosts can continue to work uninterrupted
    
    
• Reduces total cost of ownership (TCO) of security management
  • Reduce CAPEX through “pay-as-you-grow” licensing for maximum investment protection by scaling solution costs to needs
  • Reduce OPEX through automatic signature generation and activation for the duration of the attack without human intervention
  • Adapts to changing network conditions - requires minimal configuration without the overhead of system tuning and ongoing maintenance
  • Seamless integration into the network environment
    
    
• Reduces link capacity costs for carriers
  • Removes high volume worm propagation and DoS/DDoS flood attacks
  • Immediate response to known and zero-minute attacks without blocking legitimate user traffic during attack
    
    
• Ensures Service Level Agreements (SLAs) for service providers
  • Service level guarantee using BWM rules

Insite Centralized Management and Reporting