Hong Kong (PRWEB) November 08, 2011
Nexusguard was invited to speak in a seminar titled “Defending Against DDoS Attack and Enforcing Cloud Security” co-organized by Hong Kong Police Force (HKPF) and Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) on 21st October.
Representatives from local E-Commerce operators, Internet service providers and security firms attended the seminar, looking to understand DDoS and its implications and seeking information on how one may best react to protect their web and business processes.
Lento Yip, guest speaker and the vice chairman of Hong Kong Internet Service Provider Association (HKISPA), shared that DDoS is an unsolved problem to most enterprises. “Some of them are using online application platform for their point-of-sales system. When a DDoS attack strikes, they have no solution but to seek help from the ISP.”
However, Lento has also added the ISPs themselves are still looking for a comprehensive solution for DDoS, and they can only offer simple techniques in responding to these attacks.
Frank Tse, the research manager of Nexusguard, agreed that the DDoS problem is not easily resolved. “The architecture of TCP/IP protocol is unsafe. It’s for communication instead of security purpose. Under TCP/IP, having mitigation boxes only is not enough to defend against DDoS.”
“The deployment and design of mitigation is complex.” Frank added, “In Nexusguard, the process of attack detection, identification and mitigation could involve more than 20 layers. There are real experts behind the boxes and that’s why Nexusguard can guarantee a high service level to our customer”.
Frank also provided some guidelines to help enterprises choose the most suitable DDoS mitigation solution. “A high risked enterprise with mission critical online presence should consider a premium service provider with distributed network architecture. They should also bebacked with comprehensive Business Continuity and Disaster Recovery Plan,” He emphasized.
On the other spectrum, S.C. Leung, senior consultant at HKCERT, reminded enterprise to update security patches whenever it’s available, and to be constantly vigilant in sanitizing one’s own IT infrastructure with current and updated virus scanners so as not to unwillingly contribute to a DDoS botnet.
Joe Chan, Chief Inspector of HKPF (Operations), shared that theDDoS attack came from computers distributed all overthe world. They will maintain an effective liaison with HKCERT, security firms and law enforcement agencies in mainland and overseas to reduce number of cyber crime.
Nexusguard, incorporated in 2008, is a premium provider of end-to-end, in-the-cloud, Internet Security Solutions. Nexusguard delivers solutions over the internet to ensure that our clients enjoy uninterrupted web-service delivery to their users, by protecting them against the ever-increasing and evolving multitude of internet threats, particularly Denial-of-Service (DDoS) attacks and other attacks directed at web application software.
# # #