Basic Facts:
If you are the owner of the website, which may be a subject of DDoS attacks and if you already have been "shopping" for DDoS protection solution provider, you may have noticed that some companies, when explaining (if at all) the methods they use for DDoS protection, are stopping short just after mentioning their network capacity. It is important to note, that while the network capacity is indeed an important requirement for a solid protection of websites from the “flood” of useless (not valid) "attack traffic", it is by far not the only criteria of effective protection.
Unlike some of the competition, we use the upstream network bandwidth very wisely, which allows us to bring down the protection costs significantly and pass saving onto our clients. In addition to being connected to true, multi Gigabit network backbones, we, prior to letting the legitimate traffic to your website, apply multilevel, flexible DDoS filtering techniques, using highly responsive, proprietary, state of the art hardware and software solutions.
We named our main DDoS protection product, the ClearPath (TM) system, due it's ability to not interfere with website content and it's being practically transparent to the end user.
ClearPath (TM) in general terms:
By definition, the DDoS attack is something that, to a great degree, is a repetitive (so to speak) event, simply because it is (usually) created by a single person (the attacker). Even though multiple "zombie computers", possibly with thousands of different IP addresses are used to "send" the attack (thus mimicking the legitimate traffic), DDoS traffic "repetitiveness" CAN BE effectively detected and blocked, given that proper filtering technology is in place.
The self evolving ClearPath (TM) technology we use, does exactly that and even more. We continuously study the attacks in order to improve our already high quality traffic filtering channels. The more case studies we have, the more solid our DDoS filtering system becomes.
Few words on “Other” (inferior) methods of DDoS protection:
It is worth mentioning that one could often see “session authentication” methods being used and even sold as “DDoS protection” solution. Such methods involve installation of various authentication pages INSTEAD of your website's home page. However, they were NOT meant to be used for protection from serious DDoS attacks. The idea here is that legitimate visitor of the website, prior to seeing your home page, must pass the authentication "puzzle" (such as entering the text and/or numbers shown on the "captcha" gif images) and that this is supposedly something that "attacking zombies" cannot do efficiently.
Unfortunately, in most cases, presence of authentication pages for the sole purpose of DDoS protection does very little of it, while creating FALSE sense of protection. Such installations may in fact do more harm than good to the website's content and its legitimate traffic.
This type of protection may only partly help from very low intensity DDoS attacks, just like umbrella protects from small rains. If the attack becomes more like a real “water fall”, the umbrella will not accomplish much to keep your Internet recourses “dry”.
One could of course argue that authentication pages can be "tightened" in reply to increased levels of DDoS attack. However, it is only a matter of minor re-programming by the hacker and new authentication will get “broken”. On top of that, what becomes a real problem with “tightened authentication”, is that legitimate users may (and most often do) have very difficult times accessing the website all together.
Besides accessibility problems by the end users, installation of authentication pages also require advanced technical skills, proper setup and, importantly, their continuous MAINTENANCE, in order not to destroy website search engines rankings. Thus, only a few weeks of incorrectly setup authentication pages, may waste years of your website optimization and search engines indexing efforts, leading to an unacceptable for most businesses loss of crucial SEO traffic. If that is not enough of a problem, the "captcha" pages themselves, may actually become the targets of an attacker. Thus, if the authentication process of website's access on it's own, is made to be overloaded by the hacker, then the web server's computing resources can be drained to critical levels.
Dazzlingly Skilled in DDoS Protection:
We are constantly striving for improvements. Thus, ever growing availability of our own case studies and continuous external research of the latest communication technologies, allow us to efficiently compile and implement true, state of the art protection for the Internet resources of our customers.
At DDoSWIZ.COM, due to the availability of our advanced ClearPath (TM) technology, unless specifically ordered, we will not setup any additional pages in front of your website, while fully protecting it from DDoS attacks. Such protection will allow website owners to present their web pages in exactly the way they meant to be presented to the end users, as well as to search engine robots for proper indexing.
Copyright © 2008-2009 DDoSWIZ.com. All Rights Reserved.