The Akamai Blog Subscribe
SSL, could this be your Achilles heel?
Have you embraced SSL/TLS to protect the sensitive parts of your website and used client certificates to authenticate connecting parties? If so, this new layer of security may expose you to a whole new set of threats - Distributed Denial of Service (DDoS) and application layer attacks over SSL. Many people still think DDoS is all about volume - at Akamai we're saying (and seeing) that resource starvation attacks will become more
How big is 300 Gbps, really?
The 300 Gbps attack this week against SpamHaus certainly seems epic. But how big is it, really? When we think about an attack an Akamai, we think about three things: the attacker's capacity, their leverage, and the target's capacity. And when we think about leverage, it's really comprised of two smaller pieces: how much cost efficiency the attacker expects to get, and how the target's resilience mitigates it. 300 Gbps
What can be done about spoofing and DNS amplificatio ...
There's been a lot of talk about the recent very large DDoS attack against Spamhaus. Although I was quoted in some articles about it, I want to be clear that the attacks did not affect or involve Akamai or our customers. However, we have been the object of similar attacks in the past, and Akamai has a vested interest in making the Internet better - safer, more reliable and higher
RSA Conference Recap from CSO, Andy Ellis
I want to take the time to thank everyone who connected with Akamai at the RSA® Conference! Whether you just dropped by to pick up some shwag, or got to spend time discussing our Kona Security Solutions, I appreciate that you took the time in your busy schedule to engage with us. As Akamai's Chief Security Officer, I also get a lot of vendors reaching out to me after a
Are you a Liar or Outlier, or Both?
Akamai is pleased to host Bruce Schneier at the Akamai booth at RSA® Conference in San Francisco the week of Feb 25th. We will be giving away free copies of Bruce's newest book - Liars and Outliers - and Bruce will be available for signings. Bruce will be signing copies of his new book Liars and Outliers. Bruce is both an innovative thinker and a thought leader in the field of security. Liars
What a DDoS attack may be trying to hide
Earlier this month, Akamai held its second annual Financial Services Security Roundtable in London. The session was hosted by one of our global banking customers, and attended by numerous banks from London and Ireland. The meeting was held under Chatham House Rule, a well-known format in the UK, but not as well known in the U.S. and other regions. Under the Chatham House Rule, participants are free to use the
Global Industry Leaders to Gather at #AkamaiEdge 201 ...
The largest annual gathering of Akamai customers and partners, the Akamai Edge Conference, is taking place next week at the Aria Resort & Casino in Las Vegas and will feature speakers from more than 40 companies. Registration information and the complete agenda can be found at: www.akamai.com/edgeBusiness and technology leaders from Amadeus, Build.com, Cisco, CTV, Grainger, GREE, Guitar Center, Symantec, USAA, Visa, and many others, are scheduled to present during
Information, not Hope, is the Key to Surviving DDoS ...
On any given day, Akamai delivers 15-30% of the world's web traffic, including some very high-profile sites. We also receive large volumes of Distributed Denial of Service (DDoS) attacks and provide DDoS protection services to act as a buffer between our customers and the attackers. In a typical week, Akamai and/or our customers are the target of two significantly-sized attacks of 10 or more Gigabits per Second (Gbps) and countless
Take a Byte out of CRIME
On September 21, 2012 at the 8th annual Ekoparty Security Conference in Buenos Aires, Argentina, security researchers Juliano Rizzon and Thai Duong released their latest SSL vulnerability and the accompanying attack tool. Called CRIME (Compression Ratio Info-leak Made Easy), their tool exploits a weakness in the compression algorithm used by encryption protocols SSL/TLS and SPDY. Similar to the tool the pair released in 2011, BEAST, CRIME is a client-side attack