DDoS attacks are getting more sophisticated, more frequent and bigger than ever before. The systems that are most common in enterprises today cannot keep up with the constantly evolving DDoS threats because many use old technology. It is therefore important that enterprises adopt a modern defence solution that can help meet these newer requirements. This is according to Ronald Sens, EMEA Director for A10 Networks.
According to Ronald, there are four different requirements that need to be met including:
1. Precision: More effective precision will help enterprises avoid costly detection and mitigation mistakes. It is important that attacks fail hard by precisely identifying a threat and stopping it before it causes any long-term damage.
2. Scalability: The need to scale when required is important, especially against IoT devices. With the spread of IoT devices comes the spread of bots in various sizes and powers.
3. Automation: With automation the human input is no longer required, allowing the dedicated IT security employees to focus their expertise elsewhere within their department.
4. Affordable: Systems must become smaller and more affordable but, at the same time, cyber defences can’t lose any kind of performance.
Outside of the four requirements mentioned above, enterprises also need to think about utilising cyber threat intelligence. Cyber threat intelligence stops enterprise employees from undertaking blind DDoS mitigations based on guesswork. It is vital that those in charge of cybersecurity in the business are up to date and knowledgeable on all parts of the network.
For any common threat, instead of guessing the ‘intent’ of hackers, enterprises should try to have an inventory of methods to defend the network. Finding and identifying what methods need to be used is very important, but to do this security professionals need to identify the type of attack.
A comprehensive protection solution needs the following:
· Enterprises need to make sure their defences have a multi-layered or hybrid protection approach when it comes to DDoS defence.
· A dedicated on-premise detection and mitigation management tool that is constantly providing protection from any kind of DDoS attack.
· The right support group that can help enterprises manage and subjugate any situation, especially whenever an attack is about to saturate the pipes of a network.
· Security professionals need to make a decision to redirect the track to a hybrid cloud protection if an on-premise one is not working hard enough. After a clean in the cloud, the traffic can be sent back to the on-premise protection.
This is a hybrid defence so utilising a solution that can implement all of these features alongside a competent team of cybersecurity professionals is the best practice enterprises can adopt in the fight against DDoS.