Radware, the leading provider of integrated application delivery solutions solutions for business-smart networking, today announced the issuance of three United States Patents No. 7,617,170 “Generated Anomaly Pattern for HTTP Flood Protection”, No. 7,624,084 “Method for Generating Anomaly Pattern for HTTP Flood Protection”, and No. 7,607,170 “Stateful Attack Protection”. These three patents cover a system, methodology, and approach to detect botnet-originated web misuse and denial of service attacks, by learning the behavior in which users utilize the web server application and analyzing patterns that deviate from the normal “human” behavior. Once an attack is detected, the system creates an accurate real-time signature that characterizes the bot attack pattern and blocks bot activities accordingly – all without blocking legitimate user traffic.
As methods of online attacks increase in frequency, sophistication, and severity, application security solutions must be able to accurately mitigate potential network-halting and application misuse threats. As such, Radware has invested in research and development to innovate and advance its unique security offerings to support automatic real-time signature protection for zero-minute and non-vulnerability based attacks that misuse critical application resources.
Awarded with three new U.S. patents, Radware has expanded its award-winning DefensePro® product line, which uses multiple behavioral analysis engines to detect network attacks that cannot be mitigated using static signatures. As part of the Company’s APSolute® Attack Prevention Solution for data centers, which is aimed at fighting emerging threats targeting network bandwidth, application resources and application vulnerabilities, DefensePro allows for protection to be achieved by automatically creating an accurate real-time signature that can block attacks without compromising legitimate user traffic. Leveraging the new patented technology, Radware’s solution offers protection through advanced detection of attacks/anomalies made according to multiple traffic parameters in both traffic directions, prevents attacks by analyzing HTTP traffic parameters, and mitigates an attack by using attack pattern parameters to filter out unwanted traffic.
“Radware's latest three patents tap into today's enterprise network security requirements for a progressive application security management system that enables uninterrupted network and application access, while filtering out potential threats,” said Avi Chesla, Vice President, Security Products, Radware. “Radware’s intellectual property proudly allows it to be the only company to offer this level of application and network security protection for data centers.”
Patent numbers 7,617,170 and 7,624,084 cover the system and methodology required to detect and mitigate bot originated DoS/DDoS HTTP “page” flood attacks. The protection uses various adaptive methods to learn the normal behavior toward the protected servers that tunes the sensitivity of the anomaly detection engine which is based on fuzzy logic inference systems and statistical thresholds. The protection system allows an accurate mitigation according to the source IP(s) and the HTTP request URL’s that are used as part of the attack.
Patent No. 7,607,170 provides a method for detecting an attack in a computer network. This includes monitoring communications traffic transmitted over connections on the network that are associated with a stateful application protocol required to detect respective application states of the connections, and analyzing a distribution of application states required to identify the attack.
Radware (radware.com), the global leader in integrated application delivery solutions, assures the full availability, maximum performance, and complete security of business-critical applications for nearly 10,000 enterprises and carriers worldwide. With APSolute®, Radware’s comprehensive and award-winning suite of application delivery and network security products, companies in every industry can drive business productivity, improve profitability, and reduce IT operating and infrastructure costs by making their networks "business smart".
This press release may contain forward-looking statements that are subject to risks and uncertainties. Factors that could cause actual results to differ materially from these forward-looking statements include, but are not limited to, general business conditions in the Application Switching or Network Security industry, changes in demand for Application Switching or Network Security products, the timing and amount or cancellation of orders and other risks detailed from time to time in Radware's filings with the Securities and Exchange Commission, including Radware's Form 20-F.