Cover Image
市場調查報告書

DDoS攻擊:CSP的機會及威脅

DDoS Attacks: Opportunities & Threats for CSPs

出版商 Heavy Reading 商品編碼 361175
出版日期 內容資訊 英文 22 Pages
商品交期: 最快1-2個工作天內
價格
Back to Top
DDoS攻擊:CSP的機會及威脅 DDoS Attacks: Opportunities & Threats for CSPs
出版日期: 2016年06月24日 內容資訊: 英文 22 Pages
簡介

分散式阻斷服務攻擊 (DDoS) 攻擊,帶給通訊服務供應商 (CSP)的經營模式嚴重的威脅。

本報告以DDoS攻擊為焦點,提供最近的模式和趨勢,對CSP的影響相關驗證,DDoS攻擊的網路基礎設施的保護,DDoS攻擊的檢測和抑制焦點,CSP的市場形勢的變化等系統性資訊。

第1章 摘要整理

第2章 對DDoS攻擊:帶給CSP的影響

第3章 DDoS攻擊的威脅的新興趨勢

  • 音量攻擊
  • 應用層級攻擊
  • 多載體攻擊
  • 迴避檢測高的攻擊手法
  • 智慧型手機的殭屍網路劇增
  • SDN、NFV產生的新DDoS的漏洞

第4章 保護CSP不受DDoS攻擊

  • 能見度和檢測出發點
  • 從黑洞到in line排除減輕技術
  • 可靠性的高的自動化至高的目標
  • DDoS防禦有效利用NFV、SDN
  • 以網路全體有效利用防禦資產
  • IETF、ATIS的標準化活動

第5章 DDoS防禦的供應商生態系統

第6章 即服務防禦:機會及風險

  • 來自網際網路大廠的競爭
  • CSP的差異化
目錄

Distributed denial-of-service (DDoS) attacks pose a serious threat to the communications service provider (CSP) business model. DDoS attacks generate network outages that suspend the ability to bill for service; they are often launched in conjunction with data exfiltration attacks; they trigger penalties for breaches of service-level agreements (SLAs); and they put upward pressure on customer churn.

CSPs have tended not to feature among the highest-profile DDoS attack targets. There is nevertheless plenty of evidence of specific CSPs that have been impacted over the last 18 months - and how they have been impacted. Among the most recent high-profile incidents was the attack on Talk Talk, a U.K. Internet service provider (ISP), in the latter half of 2015. This featured a multi-vector DDoS and data exfiltration attack, and resulted in the company losing one third of its market value over a few weeks.

This type of devastating impact is just the tip of the iceberg, however. Many network outages and service degradations go unexplained in the public domain: Either the CSP is not required to disclose the exact causes, or it genuinely doesn't know what caused a specific outage or service degradation. In a number of cases, those unexplained outages include DDoS attacks. Where many CSPs are routinely detecting and mitigating DDoS attacks very effectively in a way that ensures no impact is felt today, that carries a significant cost in terms of capex and often manually-incurred opex.

When it comes to dealing with DDoS attacks, a CSP's first responsibility is to protect its own network uptime. Its second priority is to consider a play in the DDoS-protection-as-a-service market, protecting enterprise customers against DDoS attacks penetrating and impacting their network infrastructure.

The rate of technology change in the realm of DDoS attack creation and CSP network transformation with software-defined networking (SDN) and network functions virtualization (NFV) is so rapid now that the requirements for DDoS protection have moved on quite a bit from where they were just three or four years ago. The market in specialized DDoS equipment is more competitive than it was. The market in cloud-based DDoS protection services, as well as more broadly the managed security services provider (MSSP) space serving enterprises, is also becoming more competitive.

DDoS protection equipment vendors themselves are now delivering cloud-based DDoS protection as a service - in competition with some of the same DDoS protection service providers to which they sell their products. Some of the global Internet companies, such as Amazon, Google and Rackspace, are now investing in DDoS protection at their hyperscale data centers. In effect, they're eating into the market in network security services.

‘DDoS Attacks: Opportunities & Threats for CSPs ’ analyzes recent patterns and trends in the nature of DDoS attacks and the impact they are having on CSPs. The report explores the growing threats to network availability and data security from ever more sophisticated types of attack, as well as from network transformation with SDN and NFV. It highlights some of the key requirements for protecting the network infrastructure against DDoS attacks, and detecting and mitigating those attacks that still get through. Finally, the report examines changes in the market landscape for CSPs that are looking to monetize DDoS protection as a service.

The DDoS-protection-as-a-service market is becoming increasingly competitive. As shown in the excerpt below, vendors of specialized DDoS protection equipment can now sell into four discrete customer groups in addition to CSPs: data center operators, MSPPs, enterprises and cloud-based DDoS protection providers.

Excerpt:
Five Target Markets for Vendors of DDoS Protection Equipment

‘DDoS Attacks: Opportunities & Threats for CSPs ’ is published in PDF format.

Table of Contents

1. EXECUTIVE SUMMARY

  • 1.1. Key Findings
  • 1.2. Companies Covered

2. DDOS ATTACKS: PROVEN IMPACTS ON THE CSP

3. EMERGING TRENDS IN DDOS ATTACK THREATS

  • 3.1. Volumetric Attacks
  • 3.2. Application-Layer Attacks
  • 3.3. Multi-Vector Attacks
  • 3.4. More Advanced Attack Techniques for Evading Detection
  • 3.5. The Rise of Smartphone Botnets
  • 3.6. New DDoS Vulnerabilities Arising With SDN & NFV

4. DEFENDING THE CSP AGAINST DDOS ATTACKS

  • 4.1. Visibility & Detection Are the Starting Point
  • 4.2. Mitigation Techniques From "Blackholing" to In-Line Scrubbing
  • 4.3. Highly Reliable Automation Is the Holy Grail
  • 4.4. Leveraging NFV & SDN for DDoS Defense
  • 4.5. Leveraging Defensive Assets Throughout the Network
  • 4.6. IETF & ATIS Standardization Efforts

5. THE VENDOR ECOSYSTEM IN DDOS PROTECTION

6. PROTECTION AS A SERVICE: OPPORTUNITY & RISK

  • 6.1. Competition From Internet Giants
  • 6.2. The CSPs' Key Differentiator. Really?

TERMS OF USE

VENDORS COVERED (15)

  • A10 Networks Inc.
  • Allot Communications Ltd. (Nasdaq: ALLT)
  • Arbor Networks Inc.
  • Cisco Systems Inc. (Nasdaq: CSCO)
  • Corero Network Security Inc. (LSE: CNS)
  • Deepfield Networks Inc.
  • ECI Telecom Ltd.
  • F5 Networks Inc. (Nasdaq: FFIV)
  • Fortinet Inc.
  • Huawei Technologies Co. Ltd.
  • Infoblox Inc. (NYSE: BLOX)
  • Juniper Networks Inc. (NYSE: JNPR)
  • Nominum Inc.
  • Radware Ltd. (Nasdaq: RDWR)
  • Telco Systems Inc., a BATM company
Back to Top