Amazon Web Services (AWS) has capped a busy week by unveiling a new product called Shield that aims to protect customer applications and services from being overrun by distributed denial of service (DDoS) attacks.
DDoS attacks are increasingly in both regularity and severity, with numerous high-profile incidents over the past few months, most notably when DNS provider Dyn was hit, which caused problems for major sites such as Reddit and Netflix.
AWS’s Jeff Barr explained in a blog post that the service took advantage of other AWS capabilities to try and ensure DDoS attacks do not cause havoc with firms applications.
“It works in conjunction with Elastic Load Balancing, Amazon CloudFront, and Amazon Route 53 and protects you from DDoS attacks of many types, shapes, and sizes.”
There are two services on offer from AWS. The first is called AWS Shield Standard and is a free service provided to all AWS customers.
“It protects you from 96 per cent of the most common attacks today, including SYN/ACK floods, Reflection attacks, and HTTP slow reads. This protection is applied automatically and transparently to your Elastic Load Balancers, CloudFront distributions, and Route 53 resources,” Barr said.
The second is called AWS Shield Advanced and this provides additional DDoS mitigation capability for “volumetric attacks, intelligent attack detection, and mitigation for attacks at the application & network layers”
Barr added: “You get 24×7 access to our DDoS Response Team (DRT) for custom mitigation during attacks, advanced real-time metrics and reports, and DDoS cost protection to guard against bill spikes in the aftermath of a DDoS attack.”
AWS touted the face Shield provides an always-on network flow monitoring hat inspects incoming traffic to AWS so that it can detect malicious traffic in real-time.
The product has been in announced in a busy week for AWS that also saw it unveiled a new data transport offering called Snowmobile that is essentially a huge truck capable of storing 100PB of data, to enable firms to move huge data estate to the AWS cloud.
Australian government to require technology and communications companies to provide access to messages
New bill avoids demanding 'backdoors' in encryption, but includes measures to compel companies to provide access to encrypted communications
Indonesian overclocker Ivan Cupa (with the aid of a lot of liquid nitrogen) achieves record overclock on AMD's latest Threadripper
Ssupermassive black hole is so big it corresponds to four per cent of the galaxy's total mass
Imminent attack will target a single bank with cloned cards used to fraudulently withdraw millions over one weekend