Product Overview: Arbor Networks APS
Arbor Networks APS (Advanced Protection System) is a comprehensive solution designed to protect organizations against various types of Distributed Denial of Service (DDoS) attacks and other advanced cyber threats. Here’s an overview of what the product does and its key features:
Primary Functionality
Arbor Networks APS is primarily aimed at detecting and mitigating DDoS attacks to ensure business continuity and network availability. It offers both on-premise and cloud-based protection, making it a hybrid solution that can handle a wide range of DDoS threats, including volumetric, TCP state-exhaustion, and application-layer attacks.
Key Features
1. Hybrid Protection
The APS solution combines on-premise appliances with cloud-based services, such as Arbor Cloud, to provide a robust defense against DDoS attacks. This hybrid approach ensures that both local and large-scale attacks can be effectively mitigated.
2. DDoS Detection and Mitigation Automation
Arbor APS features automated DDoS detection and mitigation capabilities, which enable fast and effective response to attacks. This automation is supported by real-time updates from Arbor’s Security Engineering and Response Team (ASERT) and the ATLAS Intelligence Feed.
3. Embedded SSL Inspection
The APS includes built-in SSL inspection to detect and stop DDoS attacks that are hidden in encrypted traffic, ensuring comprehensive protection against Layer 7 attacks.
4. Cloud Signaling
The Cloud Signaling technology allows the APS to automatically alert upstream service providers, such as the ISP or Arbor Cloud, when larger attacks threaten network availability. This ensures rapid mitigation of attacks before they overwhelm local resources.
5. Support for Virtual and Hybrid-Cloud Environments
The APS is available in both physical and virtual form factors, supporting deployment in private virtual environments or cloud services like Amazon Web Services (AWS). This flexibility is crucial for organizations with hybrid-cloud setups.
6. ATLAS Intelligence Feed
The APS is continuously updated with the latest global threat intelligence from Arbor’s ATLAS feed, which provides actionable insights on DDoS and advanced threats. This ensures the APS remains effective against both known and emerging threats.
7. In-Line and Out-of-Line Deployment
The APS can be deployed in-line to actively block attacks or in monitor mode to analyze traffic and suggest mitigations without interrupting network flow.
8. Advanced Protection Capabilities
The APS offers protection against a variety of attack types, including TCP/UDP/HTTP(S) flood attacks, botnet protection, hacktivist protection, host behavioral protection, anti-spoofing, and more. It also supports configurable flow expression filtering, payload expression-based filtering, and dynamic blacklists/whitelists.
9. Managed APS (mAPS) Service
For organizations that require additional support, the mAPS service allows Arbor Networks to manage and optimize the on-premise APS products, leveraging their industry-leading expertise.
Security and Compliance
Arbor APS appliances meet stringent security standards, including FIPS 140-2 Level 2 and 3 support, secure tamper-proof enclosures, and separate “Trusted-Path” administration for FIPS 140-2 Level 3 compliance.
In summary, Arbor Networks APS is a robust and sophisticated solution for DDoS protection, offering a combination of on-premise and cloud-based defenses, automated detection and mitigation, and continuous updates from global threat intelligence feeds. Its flexibility in deployment and comprehensive protection capabilities make it an essential tool for enterprises, governments, financial services, and SMBs to ensure network availability and security.