This article can also be found in the Premium Editorial Download "Information Security magazine: How to stop data leakage."
Download it now to read this article plus other related content.
MSSPs argue that the carriers don't have the in-house expertise to develop technologies like theirs. Keith Laslop, vice president of business development for MSSP Prolexic Technologies, which offers a Clean Pipe managed service, says the carriers have to rely on partnerships with providers like Arbor Networks, McAfee and others that have established DDoS protection tools on the market.
|ARE CLOUD SERVICES FOR YOU?|
Alerts customers to potential outbreaks before they happen
Cleanses traffic on their networks before it reaches enterprise border
Blocks unwanted traffic
Mitigates DDoS attacks
Eliminates customer premises equipment (CPE)
Eliminates licenses, or redeploys detection and prevention CPE to other areas of infrastructure
Frees up bandwidth
Uses familiar service models
Sources: AT&T, MCI, Perimeter Internetworking, Gartner Inc.
"[DDoS] services, for example, are next to impossible to do themselves unless you are the largest of the large with 20 gigabits of bandwidth. You have no chance of stopping an attack yourself," Laslop says, adding that a trend is developing where many DDoS attacks originate from competitors and arrive without warning. "A lot of companies want to be proactive and want protection either because they're being threatened, or someone in their [market] has been threatened."
A company like Prolexic can charge about $5,000 per month for its anti-DDoS services, as opposed to almost double that price per month from a big carrier, according to a Gartner study. While some may think that a steep figure, providing DDoS protection internally could run in the hundreds of thousands of dollars annually, factoring in the purchase of additional hardware, bandwidth and staffing expertise, Gartner says.
MCI, via its acquisition of NetSec, veered away from AT&T's approach to cloud services. NetSec's Finium platform integrates input from a user device with intelligence gathered from MCI's IP network to prioritize threats and manage them according to policy.
"We combine our cloud services with what's happening inside," says MCI vice president of security Sara Santarelli.
"In pure cloud services, you're not matching up what's happening inside with the cloud perspective. How do you protect the inside threat as well as the outside?"
MCI has been offering DDoS mitigation and detection services since June, and it also offers an e-mail content service and a WAN defense service, both available since May.
This was first published in January 2006