NimbusDDOS, a provider of real-world distributed denial of service (DDoS) attack testing and simulation services, announced today the public launch of the first independent certification program for DDoS attack mitigation vendors. Coinciding with this announcement, NimbusDDOS is also recognising A10 Networks (NYSE: ATEN) as the first device manufacturer to complete this certification program, having successfully achieved certification of their Thunder TPS Series appliances.
In recent years, the rapid growth of Internet connected devices has caused a sharp increase in DDoS attack frequency and size. As a result, organizations of all sizes have found themselves at increased risk of DDoS attacks. Forced to respond quickly to this emerging threat, organizations are rapidly bolstering their defenses with services and products; often based only on the efficacy assurances of the vendor. Andrew Shoemaker, Founder and CEO, of NimbusDDOS said: “Enterprises often struggle with selecting DDoS attack protection products and services. By creating an independent 3rd party certification program, enterprises now have a consistent performance benchmark and framework for efficacy with which to judge potential vendors. This guarantees a more informed selection, and ultimately improved protection for their infrastructure.”
Although DDoS attacks have existed for decades, very few national and international standards exist to provide guidance on DDoS attack preparedness controls. To remediate this, NimbusDDOS constructed their own DDoS attack preparedness framework based upon more generic public cybersecurity frameworks (NIST, NIS, etc). The NimbusDDOS framework forms the foundation of the independent vendor certification program. A key feature of both the framework and vendor certification program is the notion of tiered protection that can be tailored to match the risk level of a specific organization.
Tier I Certification
Capable of identifying and mitigating the attack vectors that made up 90% or greater of in-the-wild attacks in the past year.
Tier II Certification
Capable of identifying and mitigating the attack vectors that made up 95% or greater of in-the-wild attacks in the past year.
Tier III Certification
Capable of identifying and mitigating the attack vectors that made up 98% or greater of in-the-wild attacks in the past year.
Capable of identifying and mitigating emerging threats (0-day) if applicable.
Extended testing of Tier I vectors to ensure detection of slow/low scenarios.
Tier IV Certification
Capable of identifying and mitigating the attack vectors that made up 99% or greater of in-the-wild attacks in the past year.
Capable of identifying and mitigating emerging threats (0-day) if applicable.
Extended testing of Tier I and Tier II vectors to ensure detection of slow/low scenarios.
Extended testing of multi-vector attack combinations
As an industry leader in DDoS attack testing and simulations, NimbusDDOS is uniquely capable of performing the independent vendor certification tests. The NimbusDDOS attack platform uses public cloud resources to safely and legally launch any real-world DDoS attack. These real-world attacks traverse the Internet just as a real attack, and are not synthetically produced like those generated in lab-based testing. As a result, the testing and resulting certification can be trusted to be the most accurate representation of a real-world attack. To achieve the certification, a vendor must undergo a rigorous battery of real-world attacks demonstrating ability to successfully detect and mitigate attacks while maintaining adequate performance for legitimate traffic.
A10 Certification Statement: https://www.nimbusddos.com/certification-TLKAUYN6K19G.htm
About NimbusDDOS: NimbusDDOS is the industry leader in vendor neutral DDoS attack preparedness services. Our vision is to provide the highest level of DDoS expertise to help our customers achieve the level of DDoS preparedness that their business demands. The foundation of our solutions are the expertise of our DDoS engineers, which is paired with a proprietary cloud platform that allows NimbusDDOS to perform legal DDoS attack simulations identical to those used by real-world attackers. To learn how NimbusDDOS solutions and experts are helping businesses proactively address the DDoS attack threat, please visit https://www.nmbusddos.com/
About A10 Networks: A10 Networks (NYSE: ATEN) is a provider of intelligent and automated cybersecurity solutions, providing a portfolio of high-performance secure application solutions that enable intelligent automation with machine learning to ensure business-critical applications are secure and always available. Founded in 2004, A10 Networks is based in San Jose, Calif., and serves customers in more than 80 countries with offices worldwide. For more information, visit: http://www.a10networks.com and @A10Networks.