Professional Documents
Culture Documents
managed service • Best of breed integrated WAF • Fully managed service DefenseSSL Yes Lead with Cloud WAF (w/ DDoS) offering
GTM 2 – DC Protection
(self-managed) • Behavioral-based detection (WAF and SSL) DefensePipe Lead with hybrid attack mitigation
WAF + SSL • Real-time signature creation Yes
Synchronized operations self-managed solution
mitigation Do they employ security experts to manage devices?
Time to Protect with Defense Messaging AppWall
• Real-time response in secs Would they prefer to manage their own devices? Lead with hybrid attack mitigation managed
No
service (w/ ERT Premium)
Security Do they have encrypted traffic through their network? Yes Include SSL mitigation solution
• SSL mitigation in the cloud
On-Demand • Mitigation quality with real-time signature (vs. non Akamai/Prolexic) Standalone Yes Lead with hybrid attack mitigation
Cloud DDoS Only Solution DefensePipe Customer is open to having gear on-premise? Offer DefensePipe Standalone but walkthrough
• Ability to scale to full hybrid (add on-premise) No full hybrid solution to clarify differentiator +
• Radware owns technology and service potential upsell
I have other perimeter security products, such as a NGFW providing protection. WAF
Firewalls provide policy-based control of access to critical network or application infrastructure components, however they don’t provide protection from Differentiator Radware Imperva F5 Akamai Cloud Flare Incapsula
volumetric threats (like DDoS) or vulnerabilities inherent in the application’s code. For volumetric attacks, firewalls (like any stateful device) will only be
able to track a limited number of connections before their session tables fill up and they fail. When application logic attacks that attempt to ‘crack’ the OWASP Top 10 Coverage
application, firewalls can only provide protection based on known signatures with no automated policy learning to proactively protect applications from
new attack vectors. Cisco recently partnered with Radware, leveraging its DDoS mitigation technology to complement the NGFW capabilities. Adaptive Auto Policy
Generation
I use security protections from my CDN provider.
Many CDN providers offer security services in conjunction with site optimization. While convenient to purchase together, these security services often Cloud + CPE Applications
provide weak protection from multi-vector attacks combining OWASP Top 10 application threats and DDoS. A wide variety of dynamic content attack Policy Coordination
tools that take advantage of CDN behavior with requests for non-cached content. Other attack tools that can generate sophisticated attacks across Cross Network
CDN nodes, essentially turning the CDN itself into a large attack source. Finally, leveraging CDN based protections means an organization has limited Synchronization
coordination of security policy across environments where multiple CDNs are leveraged, and limited protection for attacks against the data center. Bot Detection and
Fingerprinting
CARRIER AND SERVICE PROVIDERS
Radware Security Solutions Battle Card
(Opex, Capex)
GTM 3 – Resell
Radware products Open to Lead with reselling Radware’s existing cloud
to build a business: 3. Unmatched security expert support for SPs by ERT 1. DefensePro + Does the service provider require a customized resell services
1. DDoS as a 4. Marketplace credibility and good record DefenseSSL solution or open to reselling Radware’s offering?
5. MSSP Portal - flexible tool for extended
Customized Lead with Radware products to build their own
Service + Peak Protection solution service
2. WAF as a tenant visibility 2. AppWall + Elastic WAF
Service 6. Go-To-Market support in marketing their 3. MSSP Portal Can go with Radware products to build their
Can the service provider handle the complexity Yes
3. MSSP Portal security services own service
involved with building his own service?
DefensePro No Lead with reselling Radware’s existing cloud services
1. Industry’s most scalable platform for
Scrubbing Center DefenseFlow
GTM 4 – Infrastructure Protection
service providers Is the service provider interested in building & selling Inline AMS – provides immediate detection &
Yes