IntruGuard Solutions
Financial Services
E-Commerce
ISP/Web Hosting
Government and Education
 

E-Commerce

E-commerce is a booming business with over $200 billion in on-line retail sales in 2005. This business model is being extended to all kinds of industries from traditional book sales, on-line auction sites and now “software as a service”, and on-line gaming. These companies demand they control their own on-line servers in their facilities to ensure customer access. Content inspection schemes, SSL encrypted data transfers, and sophisticated authentication help ensure security. Yet this booming business is attracting extortion plots against these sites. The most “popular” method of attack is through DoS/DDoS traffic floods. Such an attack is hard to trace, easy to implement, and often produces results with a payoff to the criminals involved; such attacks are rarely reported as the lost of customer trust exceeds that of the payout. E-commerce site managers need a weapon to stop these criminals before they even start and provide tools to track the offenders.

IntruGuard’s IG200/2000 Network Behavior Analysis (NBA) systems are specially designed to prevent such flood attacks within seconds and ensures that the business continues uninterrupted. The ASIC based hardware design allows the gigabit throughput performance demanded and the ability to evaluate traffic on over 200,000 layer two through four parameters to ensure only malicious traffic is stopped. Numerous fail-safe designs including an extended 2 million legitimate IP address table, proxy connections to suspicious IP sources, temporary connection dropping to segment botnet vs. real customers, and multiple scan prevention techniques ensure accuracy and prevent false positives. To assist in the capture of the culprits, source tracking can help determine attacker source IP addresses and can be used to prosecute the guilty.

Often times such e-commerce sites are small operations with minimal IT staff support. Such gateways from IntruGuard provide a hands-off “set it and forget it” deployment to minimize total cost of ownership and reduce IT expertise. The gateway automatically learns traffic patterns, sets thresholds and blocks bad traffic with no user intervention required beyond basic configuration. All parameters are learned by the gateway. Email alerts can be sent as requested. No other NBA system has the ease-of-use, total instantaneous flood prevention, and accuracy of the IG200/2000 family.

For further information on our solutions, read our white papers on:

Protecting E-commerce Infrastructure from Distributed Denial of Service Attacks

Infrastructure Protection for Data Centers through Network Behavior Analysis (NBA)

Network Behavior Analysis (NBA) Systems For Service Providers

Network Visibility without NetFlow

Go Beyond MRTG