Check Point is now rolling out a new line of hardware appliance called the DDoS Protector. DDoS attacks occur when an end point or server is flooded with an overwhelming number of requests from a large pool of distributed addresses. DDoS attacks have recently had a higher profile due to hacktivism attacks using the low orbit on cannon (LOIC) and other similar DDoS tools.
While DDoS mitigation can be a feature on next generation firewall (NGFW) and IPS appliances, it is Check Point’s view that a standalone hardware appliance that provides comprehensive layers of DoS/DDoS protections is also needed.
“The device is using behavioral analysis and other fuzzy logic techniques for detecting attacks, while the NGFW and IPS are using a more deterministic approach,” Alon Kantor, corporate development architect at Check Point, told Enterprise Networking Planet.com. “In addition, the device is using parameters from several layers simultaneously instead of relying on each feature separately.”
Kantor also noted that high volume network flood attacks require specialized hardware. The hardware that Check Point is delivering leverages a proprietary OS developed by Radware, based on Intel’s Wind River VxWorks. Check Point is partnering with security vendor Radware for the DDoS Protector to build the device.