etisalat digital security - middle east dns forum€¦ · etisalat digital security trusted partner...
TRANSCRIPT
Value Proposition
Etisalat Digital SecurityTrusted Partner in Securing Your Digital Transformation
Agenda
page 2
DNS Brief
Global and Local Stats
ISP Services and Security
Customer and Community Protection
Summary
Power of Simplicity…
page 3
0:0:0:0:0:ffff:42dc:9fff 66.220.159.255 www.facebook.com
DNS Traffic Trends…
page 4
Traffic (requests & responses) shifted between January 2016 and January 2019.
Avg Daily Volume(Req + Res, Billions of Trn)
Total Traffic Volume Trend
Root Server Traffic Trends - All Group Average (Jan 2016 to Jan 2019)
Traffic volume on DNS servers worldwide
increasedby 57%
Source: Akamai – DNS Traffic and Trend report
DNS Pro and Con…
page 5
53
Internet Backbone
Reliable
Support other protocols
Resilience
Availability
Global Acceptance
Stable
Proven
Scalable
Pro’s
DNS Cache Poisoning
DNS Syn Flood
DNS spoofing
Botnets
Data Exfiltration
NXDOMAIN attack
Phishing
Malware and CnC
Con’s
Service Provider -Global Attacks Overview…
page 6
Network Layer Attack
Application Layer Attack
Source: Arbor 13th WISR Report 2018
DNS
HTTP
Regional Attack Overview…
page 7
0
5
40
308
1539
4
49
289
1516
20790
40G +
20 G +
10 G +
5 G +
1 G +
Total Attacks Observed
2018 2017
Total Attacks in 2017 = 1892Total Attacks in 2018 = 22648
1097% Increase
Top DDoS Attack Patterns
DNS Amplification
IP Fragmentation
CLDAP Amplification
Memcached Amplification
NTP Amplification
SSDP Amplification
Increasing Attacks witnessed towards UAE customers in 2018
ISP’s DNS Infrastructure Landscape
page 8
DDOS
Mitigation
Phishing & Spear Phishing Data Theft
Recursive Server Authoritative Server Self
Domain Registrant
Authoritative Customer
DNS poisoning
BCPDNS SME
SubscribersNetwork
ISP DNSNetwork
ISP Defense Layer
Attacks
page 9
Secure DNS Service Category
SMB
Enterprise
Cost Optimization
• Parental Control
• Secure Browsing
• Malware Protection
• Malware Protection
• Network Layer DDoS mitigation
• Secure Browsing
• Basic Security Monitoring
Consumers • Managed Hybrid DNS Security platform
• Network and Application layer DDoS mitigation
• Zero Day Attack protection
• DNSSEC
• DNS Security Monitoring and Response
• Compliance Requirement
Service Reliability and Resiliency
Performance and Security
DNS as a Defensive Weapon!!
page 10
DDOS
Mitigation
First Line of defense
Visibility Threat Hunting and Forensics
Intelligence
page 11
DDOS
Mitigation
Thank you
Let’s discuss it