Cloudbric ADDoS
Edge computing-based DDoS attack defense service
Superior defense against DDoS attacks including application layer(L7)
Cloudbric ADDoS blocks not only various DDoS attacks on the transport & network layer but also evolving DDoS
attacks on the application layer (Layer 7) with 50+ edge locations.
Cloudbric, the No.1 Cybersecurity service vendor in the APAC region, provides Advanced DDoS protection specialized
against DDoS attacks on not only Layer 3,4 but also Layer 7 (application layer).
Problem
The trend of DDoS
Attacks: Layer 3,4 attacks
evolve into elaborate
layer 7 attacks
Transport & Network
Layer (Layer 3,4) Attacks
Application layer
(Layer 7) attack
DDoS attacks are growing more sophisticated and complex every year, yet existing
measures are not keeping up to pace. Since L7(Application Layer) Attacks are more
elaborate and difficult to block than L3,4 attacks, The number of DDoS attacks on
L7 has been significantly increasing. However, most CDN companies that provide
DDoS mitigation services cannot detect & block application-layer attacks well.
Layer 3,4 attacks rely on massive high volumes of data to slow or crash web servers
down. The characteristic of layer 3,4 attacks is that it does not require TCP. TCP is
usually used in conjunction with IP to maintain the connection between the sender
and the target. When the target server is under the stack, large amounts of junk data
usually overwhelm the target’s resources making the target crash.
The most common DDoS attacks on Layer 3,4 are ICMP, SYN, UDP floods, and so on.
The application layer refers to the human-computer interaction layer where
applications can access network services. Such an attack is usually done through an
HTTP flood: similar to refreshing a web browser repeatedly on many devices at once.
Many requests flood the target’s server, resulting in denial-of-service. Since the
malicious traffic is hard to differentiate from legitimate traffic, layer 7 attacks are hard
to defend against.
Cloudbric ADDoS: Advanced DDoS Protection is a cutting-edge DDoS (Distributed Denial-of-Service) attack protection
and mitigation service. More than 50+ edge locations strategically deployed to mitigate DDoS attacks.
With the worldwide edge and global Anycast, it provides not only DDoS mitigation but also high-speed throughput and
outstanding network capacity.
Cloudbric ADDoS: Advanced DDoS Protection
Cloudbric ADDoS leverages decentralized edge locations closest to the client, rather than the centralized cloud
infrastructure, to provide more effective and efficient defense against the latest DDoS attack patterns.
Blocks All DDoS Targeted Layers
Cloudbric ADDoS is equipped with
logic-based intelligent WAF engine
that was voted as Asia Pacific’s
No.1 for application-layer attacks.
With edge locations and WAF
engine, it blocks not only L3, L4
DDoS attacks but also elaborate L7
attacks which are hard to detect
and block by CDN companies.
Huge Traffic Capacity
Each edge location is built for
scalable throughput.
By processing huge volumes of
traffic, Cloudbric ADDoS mitigates
and resolves large, complex DDoS
attacks with minimal impact
on web service.
It can defend against large-scale
attacks up to 65 Tbps.
Rapid Response
Cloudbric ADDoS quickly responds
to ADDoS attacks, leveraging edge
computing to shorten wait time
by 60% and create a dedicated
network between edge locations.
Cloudbric ADDoS can handle the latest attacks
Cloudbric ADDoS responds to a full range of DDoS attacks, from frequent DDoS attacks to multi-vector attacks and
application attacks.
Types of DoS/DDoS attacks handled by Cloudbric
| Attack Types | ||
| TCP SYN Floods | TCP Fragment Attack | Slowloris |
| TCP FIN Floods | HTTP HEAD Floods | Cache Control Attack |
| TCP RST Floods | TCP Syn Spoofed | HTTP SSL Saturation |
| HTTP GET Floods | Brute Force | Amplified DNS DDoS |
| ICMP Floods | TCP Ack Floods | RUDY |
| HTTP Post Floods | Ping of Death | Smurf |
| HTTP XMLRPC PingBack Attack | DNS NXDomain Floods | SYN Floods |
| UDP Floods | NTP Amplification DDoS Attack | CLDAP DDoS Attack |
| TCP Connection Floods | SYN+ACK Floods | and many more… |