Cisco Secure DDoS Protection At-a-Glance
Available Languages
Bias-Free Language
The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
Distributed Denial-of-Service (DDoS) attacks continue to become more frequent, more powerful, and more damaging. With the growing online availability of attack tools, the variants of possible attacks is now larger than ever.
Cisco® DDoS protection solutions defend organizations against today’s most sophisticated DDoS attacks using advanced behavioral-based and machine learning algorithms to rapidly detect and mitigate both network-layer (L3/4) and application-layer (L7) attacks. Cisco DDoS mitigation solutions protect against encrypted SSL-based DDoS attacks without adding latency and use automatic, adaptive real-time protection to defend against zero-day attacks. Multiple deployment options, including cloud-based, CPE, and hybrid deployment options, offer solutions for every customer.
Zero-Day DDoS protection
Patented adaptive, behavioral-based algorithms, continuously refined over the past decade, block sophisticated never-before-seen (zero-day) attacks with the lowest false positive rate in the industry.
Highest availability under attack
Accurately distinguishes legitimate from malicious traffic, enabling advanced SLA and maximizing service availability.
Increased data center efficiency
Comprehensive DDoS protection enables predictable engineering for network and application resources by eliminating anomalous flows that consume network resources and impact application availability.
On-Prem DDoS Protection
● Integrated with Secure Firewall 4100/9300 platforms
● Private/public cloud instances
● Dedicated on-prem appliances
Always-on Cloud DDoS
● Traffic always routed through scrubbing centers
● Real-time DDoS detection and mitigation by scrubbing centers
On-demand Cloud DDoS
● Traffic diverted only in case in large volume attack
● Detection based on NetFlow and/or other telemetry
Hybrid DDoS Protection (on-prem + cloud)
● Combines on-prem mitigation with cloud capacity
● Traffic diverted to cloud before pipe saturation
Massive capacity. Scalable global DDoS protection.
● Using the DDoS service from your ISP? Many such commodity services provide only a “best-effort” SLA against an attack.
● Cisco DDoS Protection service provides industry-leading SLAs for time to mitigate, time to detect, time to alert, time to divert, consistency of mitigation, and service availability.
Cisco Secure DDoS Protection
DDoS Emergency Attack Mitigation Service
www.cisco.com/c/en/us/products/collateral/security/ddos-emergency-attack-mitigation-aag.pdf
Global Scrubbing Centers data sheet
www.cisco.com/c/en/us/products/collateral/security/secure-ddos-protect-scrubbing-center-ds.pdf
What Is a DDoS Attack?
www.cisco.com/c/en/us/products/security/what-is-a-ddos-attack.html
For more information about our portfolio of DDoS protection solutions, contact your Cisco sales representative today or visit www.cisco.com/go/secure-ddos.
|
|
DDoS MarketSpace #1 |
|
Security Standards Compliance and Certifications
|
|
PCI-DSS v3.1 (Payment Card Industry Data Security Standard) |
US SSAE16 SOC-2 Type II US SSAE16 SOC-1 Type II |
Learn more: cisco.com/go/secure-ddos