The Security Update Service (SUS) is a security advisory and managed monitoring and detection service for enterprise network security. We help you protect your applications, network and users against the latest network and application security threats and recent denial of service attacks by delivering immediate and ongoing signature updates for worms, Trojans, BOTs, malware and various application vulnerabilities.
SUS complements your purchase of DefensePro and APSolute™ OS Intrusion Prevention and best DDoS protection modules as a critical element of protecting your network from unknown denial of service attacks.
SUS is available as a 1-year or multiyear subscription and includes the following key service elements:
The Security Operations Center (SOC) is our security specialists monitoring Internet activity 24×7 and providing the first line of defense against denial of service attacks. Membership to SUS provides subscribers with continuous signature file updates with rapid response to high-impact security events and the development and distribution of custom attack signatures. The SOC provides the following critical functions:
The first step in mitigating a threat is to detect the attack. The SOC employs a variety of methods to monitor Internet activity and detect threats. These include
When a new threat is detected, a thorough risk assessment is completed to evaluate the threat's impact and determine the appropriate threat mitigation strategy. All threats are rated (Low, Medium, High, Critical) in the following three areas:
In cases where an immediate response is deemed necessary, Radware will issue an emergency signature file update and make it available through our website for download. Registered customers will be notified via email when the emergency update is available. This may happen due to a new critical threat in the Internet that should be responded to immediately and cannot wait for the weekly scheduled signature file update.
Weekly updates are available and provide status and downloads for new attack signatures, including those previously released as emergency attack signatures. Registered customers are notified of the new update signature file using the notification function within APSolute Vision/Insite; customers with a valid SUS agreement can download the signature file.
Customers not using APSolute Vision/Insite can access the Security Central to check for the availability of new signature files. Files can be loaded directly to Radware products through web-based management or the command line interface.
For customers interested in learning why signatures were developed and issued, Radware offers an additional email notification service to which you can subscribe. You must have a valid SUS membership to subscribe.
The SUS provides an area for customers to report environment-specific or newly discovered threats. It also enables them to request attack signatures to mitigate those threats. Threats will be assessed using the methodology previously described. For threats which require a signature, Radware will either issue an Emergency Update to all customers or provide a custom signature to the customer reporting the threat. Custom attack signatures will be analyzed and incorporated into the periodic updates as appropriate.
Report a Threat
Request an Attack Signature
We'd love the opporunity to speak with you and learn how Radware can help your business. Please complete the form below and a representative will contact you shortly.