Gmarket implements DefensePro® in a 2 tier architecture to protect online web services and maximize service availability
Radware (NASDAQ: RDWR), the leading provider of integrated application delivery solutions for business-smart networking, today announced that its Intrusion Prevention and DoS Protection systems, DefensePro®, has been successfully deployed by Gmarket, one of Korea’s top shopping websites. Gmarket, a mega online store, is using both DefensePro 6000 and 3020 models to protect its network and datacenter from a variety of known and zero-minute attacks.
Founded in 2000, Gmarket became the first Korean e-commerce business to be listed on the Nasdaq (GMKT) in June 2006. It currently secures the undisputable top position in the Korean online market space with 14,700,000 registered members and more than 18 million hits a month.
Gmarket has built up a real-time three-layered disaster recovery center for high capacity, high availability and reliability in a 10 Gigabit service network. To secure its infrastructure and revenue generating web-enabled service, Gmarket deployed multiple DefensePro units in a 2-tier architecture: DefensePro 6000 units are deployed at the network perimeter, protecting their switches, firewalls and servers against incoming high-volume DoS/DDoS flood attacks; DefensePro 3020 units are being deployed at the data center, protecting web servers against service misuse attacks (such as HTTP page floods), server cracking (such as web application scanning and brute force attacks) and web application vulnerabilities exploitation.
Radware DefensePro was found to be extremely effective as it successfully blocked several unexpected attacks, which led to the deployment of additional units as a result of its proven reliability and credibility. Multiple units of Defense Pro have been deployed. Introducing Radware’s 10 Gigabits Intrusion Prevention and DoS protection solution for the first time in the Korean e-commerce industry, Gmarket is recognized to be equipped with a future-oriented and reliable service system that is capable of responding promptly to malicious external attacks.
Radware’s award wining DefensePro is a real-time Intrusion Prevention System (IPS) and DoS protection device that maintains business continuity by protecting the application infrastructure against existing and emerging network based threats that cannot be detected by traditional IPS including non-vulnerability threats (such as DoS/DDoS flood attacks, HTTP page floods, web scans, application misuse threats and more), zero-minute attacks, SSL attacks and VoIP service mis-use – all without blocking legitimate users' traffic and with no need for human intervention.
“At Gmarket, one of the largest online stores in Korea, we generate revenue through our web presence, and therefore must maintain uninterrupted web service” commented Park Eui-Won, Security Team Leader at Gmarket. “We needed an intelligent IPS with 10 Gigabit interfaces capable to fend-off high volume network attacks as well as application misuse and vulnerability based attacks – all without blocking legitimate user traffic to our web service. Static signature-based and rate-based IPS solutions make no distinction between legitimate and non-legitimate users when under attack. Radware’s DefensePro is the only solution that was able to provide us with the most complete intelligent solution to protect our website and our business.
DefensePro is the industry's first solution to combine signature protections and real-time behavioral based protections. The embedded HTTP Mitigator solution, deployed by Gmarket, has been proved to completely prevent HTTP page flood attacks flowing into the web servers in disguise as legitimate user traffic. An HTTP page flood attack is generated by Botnets that download the same page or set of pages over and over, exhausting server resources. The issue with such attack is that all incoming web traffic looks completely legitimate.
“Protecting web-based online businesses becomes a tougher challenge as network attacks move to the application layer and misuse the service. Most of these attacks go undetectable by standard network security tools” said Kevin Kim, Country Manager of Radware Korea. “Customers like Gmarket, whose priority is availability of their revenue generating web services, need to be armed with a powerful application protection solution enabling immediate response to unexpected DoS/DDoS threats and application misuse threats as a way to ensure maximum availability of their web services.
About Gmarket
Gmarket Inc. is a leading retail e-commerce marketplace in Korea, offering buyers a wide selection of products at competitive prices and sellers a comprehensive and flexible sales solution. Gmarket's e-commerce marketplace is highly scalable and facilitates the sale of products in small or large quantities to a large number of potential buyers in a convenient, cost effective and secure manner. Gmarket's e-commerce marketplace is located primarily at www.gmarket.co.kr.
About Radware
Radware (NASDAQ:RDWR), the global leader in integrated application delivery solutions, assures the full availability, maximum performance, and complete security of business-critical applications for more than 6,000 enterprises and carriers worldwide. With APSolute™, Radware's comprehensive and award-winning suite of intelligent front-end, access, and security products, companies in every industry can drive business productivity, improve profitability, and reduce IT operating and infrastructure costs by making their networks "business smart." For more information, please visit www.radware.com.
This press release may contain forward-looking statements that are subject to risks and uncertainties. Factors that could cause actual results to differ materially from these forward-looking statements include, but are not limited to, general business conditions in the Application Switching or Network Security industry, changes in demand for Application Switching or Network Security products, the timing and amount or cancellation of orders and other risks detailed from time to time in Radware's filings with the Securities and Exchange Commission, including Radware's Form 20-F.