l DATA SHEET l
SECURITY
Let’s face it. There is no peace time. Whether it be new forms of DDoS attacks, ransomware,
phishing attempts compromised BYOD and IoT devices, organizations are under constant
threat from all types of advanced cyber threats. To address these evolving threats, overtime, the
modern-day security stack has become larger, more complex but unfortunately still is failing as
evidenced by the daily reports of data breaches and downtime.
Security teams need best of breed cyber security solutions that can detect and stop all
types of cyber threats - both inbound threats and outbound malicious communication from
compromised internal devices. As importantly, these solutions must also be able to integrate
into an organization’s existing security stack and/or consolidate functionality to reduce cost,
complexity and risk.
NETSCOUT AED (Arbor Edge Defense) is such a solution. AED’s unique position on the
network edge (i.e. between the router and the rewall), its stateless packet processing engine
and the continuous reputation based threat intelligence it receives from NETSCOUT’s ATLAS
Threat Intelligence feed enable it to automatically detect and stop both inbound threats and
outbound communication from internal compromised hosts – essentially acting as the rst
and last line of defense for organizations.
Figure 1: AED’s unique location on network edge + stateless packet processing engine + ATLAS
Global Threat Intelligence = First and Last Line of Defense from advanced cyber threats.
Benets of Arbor Edge Defense:
• First Line of Defense: Deployed at the network perimeter, using stateless technology and
armed with millions of IoCs, AED detects and blocks inbound commodity cyber threats thus
taking pressure o of stateful devices such as Next Gen Firewalls.
• Last Line of Defense: Missed by existing security stack, AED can detect and block outbound
communication to known bad IP addresses, domains, URLs, geographies; thus helping stop the
further proliferation of malware within an organization and avoid a data breach.
• Contextual Threat Intelligence: When an IoC is blocked, AED leverages the global threat
intelligence of NETSCOUT ATLAS to provide more context related to the IoC thus helping
security teams determine risk and/or give them more information to proactively hunt using
their other security tools.
• Best of Breed DDoS Protection: AED can automatically detect and stop inbound application
layer, TCP-state exhaustion and DDoS attacks as large as 40 Gbps. In the event of even larger
DDoS attacks, Cloud Signaling automatically reroutes trac to Arbor Cloud or a MSSP’s
cloud-based mitigation center.
• Integration: AED’s robust REST API, support for STIX/TAXII, Syslog, CEF, LEEF enable AED to
integrate into existing security stack and processes.
INTERNAL NETWORK / DATA CENTER
THE INTERNET
DDoS Attack Traffic
Other Cyber Threats
Outbound
Threat
Communication
NETSCOUT AED
+ ATLAS
KEY FEATURES & BENEFITS
First & Last Line of Defense
AED’s unique location on the network edge,
its stateless packet processing engine and
ATLAS
®
global threat intelligence feed allow
it to stop inbound threats and outbound
communication from compromised hosts.
Integration with Security Stack
REST API, support for STIX/TAXII, Syslog, CEF,
LEEF and Contextual Threat Intelligence
fueled by ATLAS enable AED to integrate into
existing security stack and processes.
Intelligently Automated, Hybrid
DDoS Protection
The intelligently automated, fully managed
combination of in-cloud (via Arbor Cloud) and
on-premises (via AED) is continuously armed
with ATLAS global threat intelligence; oers
the most comprehensive form of protection
from the modern-day DDoS attack.
Outbound Threat Communication
Detection and Blocking
AED’s ATLAS derived, reputation based
threat intelligence allow it to detect and block
outbound communication from internal
compromised hosts; helping to stop further
proliferation of malware or data breach.
Support for Virtual & Hybrid-Cloud
Environments
vAED is a virtual version of the AED appliance
that can be run in your private virtual
environment like Amazon Web Services,
providing unied protection for your hybrid-
cloud environments.
NETSCOUT AED (Arbor Edge Defense)
First and Last Line of Smart, Automated
PerimeterDefense