Cloudbric ADDoS
Edge computing-based DDoS attack defense service
Superior defense against DDoS attacks including application layer(L7)
Cloudbric ADDoS blocks not only various DDoS attacks on the transport & network layer but also evolving DDoS attacks on the application layer (Layer 7) with 73 edge locations. Cloudbric, the No.1 Cybersecurity service vendor in the APAC region, provides Advanced DDoS protection specialized against DDoS attacks on not only Layer 3,4 but also Layer 7 (application layer).
Problem
The trend of DDoS Attacks:
Layer 3,4 attacks evolve into elaborate layer 7 attacks
Transport & Network Layer
(Layer 3,4) Attacks
Application layer
(Layer 7) attack
DDoS attacks are growing more sophisticated and complex every year, yet existing measures are not keeping up to pace. Since L7(Application Layer) Attacks are more elaborate and difficult to block than L3,4 attacks, The number of DDoS attacks on L7 has been significantly increasing. However, most CDN companies that provide DDoS mitigation services cannot detect & block application-layer attacks well.
Layer 3,4 attacks rely on massive high volumes of data to slow or crash web servers down. The characteristic of layer 3,4 attacks is that it does not require TCP. TCP is usually used in conjunction with IP to maintain the connection between the sender and the target. When the target server is under the stack, large amounts of junk data usually overwhelm the target’s resources making the target crash. The most common DDoS attacks on Layer 3,4 are ICMP, SYN, UDP floods, and so on.
The application layer refers to the human-computer interaction layer where applications can access network services. Such an attack is usually done through an HTTP flood: similar to refreshing a web browser repeatedly on many devices at once. Many requests flood the target’s server, resulting in denial-of-service. Since the malicious traffic is hard to differentiate from legitimate traffic, layer 7 attacks are hard to defend against.
Cloudbric ADDoS: Advanced DDoS Protection is a cutting-edge DDoS (Distributed Denial-of-Service) attack protection and mitigation service. More than 73 edge locations strategically deployed to mitigate DDoS attacks. With the worldwide edge and global Anycast, it provides not only DDoS mitigation but also high-speed throughput and outstanding network capacity.
Cloudbric ADDoS: Advanced DDoS Protection
Cloudbric ADDoS leverages decentralized edge locations closest to the client, rather than the centralized cloud infrastructure, to provide more effective and efficient defense against the latest DDoS attack patterns.
Blocks All DDoS Targeted Layers
Cloudbric ADDoS is equipped with logic-based intelligent WAF engine that was voted as Asia Pacific’s No.1 for application-layer attacks.
With edge locations and WAF engine, it blocks not only L3, L4 DDoS attacks but also elaborate L7 attacks which are hard to detect and block by CDN companies.
Huge Traffic Capacity
Each edge location is built for scalable throughput. By processing huge volumes of traffic, Cloudbric ADDoS mitigates and resolves large, complex DDoS attacks with minimal impact on web service.
It can defend against large-scale attacks up to 100 Tbps.
Rapid Response
Cloudbric ADDoS quickly responds to ADDoS attacks, leveraging edge computing to shorten wait time by 60% and create a dedicated network between edge locations.
Cloudbric ADDoS can handle the latest attacks
Cloudbric ADDoS responds to a full range of DDoS attacks, from frequent DDoS attacks to multi-vector attacks and application attacks.
Types of DoS/DDoS attacks handled by Cloudbric
| Attack Types | ||
| TCP SYN Floods | TCP Fragment Attack | Slowloris |
| TCP FIN Floods | HTTP HEAD Floods | Cache Control Attack |
| TCP RST Floods | TCP Syn Spoofed | HTTP SSL Saturation |
| HTTP GET Floods | Brute Force | Amplified DNS DDoS |
| ICMP Floods | TCP Ack Floods | RUDY |
| HTTP Post Floods | Ping of Death | Smurf |
| HTTP XMLRPC PingBack Attack | DNS NXDomain Floods | SYN Floods |
| UDP Floods | NTP Amplification DDoS Attack | CLDAP DDoS Attack |
| TCP Connection Floods | SYN+ACK Floods | and many more… |