IP-agnostic device fingerprinting implemented in Radware’s Attack Mitigation System
provides accurate identification to precisely detect malicious end user devices
Radware® (NASDAQ: RDWR), a leading provider of cyber security and application delivery solutions ensuring optimal service level for applications in virtual, cloud and software defined data centers, today announced enhanced protection from threats posed by advanced bots through its Attack Mitigation System. This major enhancement now gives Radware customers the ability to track end user devices without the need for Internet Protocol (IP) address. Fingerprinting technology is used to precisely identify application users or website visitors who have a history of malicious behavior, and are often part of a botnet.
Many of today’s most severe security threats leverage bots and other traffic sources that can avoid detection by mimicking user behavior, dynamically changing the source IP addresses or operating behind anonymous proxies and content delivery networks.
Businesses that conduct a high volume of online transactions are plagued by bots that can exhaust application resources, scrape sensitive information from websites illegitimately and seek vulnerabilities through application logic abuse. In order to protect applications from advanced bots or even collective human threats, website operators need more advanced user/client identification that can detect and block illegitimate users.
To help combat this threat, Radware's Attack Mitigation System has been enhanced with technology that can track and precisely detect malicious end user devices regardless of the source IP address. Device fingerprinting implemented in Radware’s Attack Mitigation System suite uses dozens of characteristics of the device in a unique way to identify and distinguish it from all others. Using proprietary tracking, Radware can generate device reputational profiles that combine both historical behavioral information aiding in the detection and mitigation of threats such as Distributed Denial of Service (DDoS), intrusions and fraudsters alike.
“We have reached a point where the IP address has limited effectiveness as a means of identifying and blocking illegitimate users,” says Ben Desjardins, director of security solutions for Radware. “With the proliferation of devices driven by the Internet of Things (IoT) and users operating multiple mobile devices more than ever before, the challenge of device identification continues to increase exponentially. Our device fingerprinting technology gives online businesses a powerful tool in combating the threats posed by the difficulties of accurate device and user detection.”
Accurate device-level identification allows for effective protection from traffic that can allude IP address based security measures. This includes malicious traffic coming through content delivery networks (CDNs) with whitelisted IPs, traffic using dynamic hosting configuration that results in a new IP address each time they access the Internet. Device fingerprinting can also improve identification of malicious users accessing the Internet through Network Address Translation (NAT) devices that result in many devices sharing the same IP address, and anonymous proxy services that make it difficult to block IPs without potentially blocking legitimate users/devices.
Device fingerprinting further bolsters the Radware Attack Mitigation System, an award-winning solution to protect an enterprise’s infrastructure against network and application downtime, application vulnerability exploitation, malware spread, network anomalies, information theft and other types of attack.
To learn more about Radware's Attack Mitigation System and the new device fingerprinting feature, visit: http://www.radware.com/AMSfingerprinting/
Radware (NASDAQ: RDWR), is a global leader of application delivery and application security solutions for virtual, cloud and software defined data centers. Its award-winning solutions portfolio delivers service level assurance for business-critical applications, while maximizing IT efficiency.
Radware’s solutions empower more than 10,000 enterprise and carrier customers worldwide to adapt to market challenges quickly, maintain business continuity and achieve maximum productivity while keeping costs down. For more information, please visit www.radware.com
Radware encourages you to join our community and follow us on: Facebook, Google+, LinkedIn, Radware Blog, SlideShare, Twitter, YouTube, Radware Connect app for iPhone® and our security center DDoSWarriors.com that provides a comprehensive analysis on DDoS attack tools, trends and threats.
©2015 Radware Ltd. All rights reserved. Radware and all other Radware product and service names are registered trademarks or trademarks of Radware in the U.S. and other countries. All other trademarks and names are property of their respective owners.
Safe Harbor Statement
This press release may contain statements concerning Radware’s future prospects that are “forward-looking statements” under the Private Securities Litigation Reform Act of 1995. Statements preceded by, followed by, or that otherwise include the words "believes", "expects", "anticipates", "intends", "estimates", "plans", and similar expressions or future or conditional verbs such as "will", "should", "would", "may" and "could" are generally forward-looking in nature and not historical facts. For example when we say that this major enhancement now enables the ability to track end user devices without the need for Internet Protocol (IP) address we use a forward-looking statement. Because such statements deal with future events, they are subject to various risks and uncertainties and actual results, expressed or implied by such forward-looking statements, could differ materially from Radware's current forecasts and estimates. Factors that could cause or contribute to such differences include, but are not limited to: the impact of global economic conditions and volatility of the market for our products; changes in the competitive landscape; inability to realize our investment objectives; timely availability and customer acceptance of our new and existing products; risks and uncertainties relating to acquisitions; the impact of economic and political uncertainties and weaknesses in various regions of the world, including the commencement or escalation of hostilities or acts of terrorism; Competition in the market for Application Delivery and Network Security solutions and our industry in general is intense; and other factors and risks on which we may have little or no control. This list is intended to identify only certain of the principal factors that could cause actual results to differ.
For a more detailed description of the risks and uncertainties affecting Radware, reference is made to Radware’s Annual Report on Form 20-F which is on file with the Securities and Exchange Commission (SEC) and the other risk factors discussed from time to time by Radware in reports filed with, or furnished to, the SEC. Forward-looking statements speak only as of the date on which they are made and, except as required by applicable law, Radware undertakes no commitment to revise or update any forward-looking statement in order to reflect events or circumstances after the date any such statement is made. Radware’s public filings are available from the SEC’s website at www.sec.gov or may be obtained on Radware’s website at www.radware.com.