E-commerce is a booming business with over
$200 billion in on-line retail sales in 2005.
This business model is being extended to all
kinds of industries from traditional book
sales, on-line auction sites and now ¡°software
as a service¡±, and on-line gaming. These companies
demand they control their own on-line servers
in their facilities to ensure customer access.
Content inspection schemes, SSL encrypted
data transfers, and sophisticated authentication
help ensure security. Yet this booming business
is attracting extortion plots against these
sites. The most ¡°popular¡± method of attack
is through DoS/DDoS traffic floods. Such an
attack is hard to trace, easy to implement,
and often produces results with a payoff to
the criminals involved; such attacks are rarely
reported as the lost of customer trust exceeds
that of the payout. E-commerce site managers
need a weapon to stop these criminals before
they even start and provide tools to track
the offenders.
IntruGuard¡¯s IG200/2000 Network Behavior
Analysis (NBA) systems are specially designed
to prevent such flood attacks within seconds
and ensures that the business continues uninterrupted.
The ASIC based hardware design allows the
gigabit throughput performance demanded and
the ability to evaluate traffic on over 200,000
layer two through four parameters to ensure
only malicious traffic is stopped. Numerous
fail-safe designs including an extended 2
million legitimate IP address table, proxy
connections to suspicious IP sources, temporary
connection dropping to segment botnet vs.
real customers, and multiple scan prevention
techniques ensure accuracy and prevent false
positives. To assist in the capture of the
culprits, source tracking can help determine
attacker source IP addresses and can be used
to prosecute the guilty.
Often times such e-commerce sites are small
operations with minimal IT staff support.
Such gateways from IntruGuard provide a hands-off
¡°set it and forget it¡± deployment to minimize
total cost of ownership and reduce IT expertise.
The gateway automatically learns traffic patterns,
sets thresholds and blocks bad traffic with
no user intervention required beyond basic
configuration. All parameters are learned
by the gateway. Email alerts can be sent as
requested. No other NBA system has the ease-of-use,
total instantaneous flood prevention, and
accuracy of the IG200/2000 family.
For further information on our solutions,
read our white papers on:
Protecting
E-commerce Infrastructure from Distributed
Denial of Service Attacks 
