The global leader in multi-cloud application security and delivery, F5 is now a part of MazeBolt’s Preferred Remediation Technology Alliance Program. This program is the first of its kind and the only combined solution on the market that ensures optimum DDoS protection for mutual customers. In this blog, F5's Yuichi Miyazaki interviews MazeBolt CEO Matthew Andriani to shed light on remediation with MazeBolt's RADAR™ offering and how customers using F5 will benefit from it.
Yuichi Miyazaki: Before RADAR, what could organizations do?
Matthew Andriani: Successful and damaging DDoS attacks have risen dramatically in recent years. Even with significant technological advancements in automated DDoS protection, misconfigurations lead to a high level of vulnerabilities in DDoS protections, resulting in damaging DDoS attacks.
Many organizations are flying blind and will unfortunately continue doing so, having no visibility into their online services’ DDoS vulnerability level. Generally, the one and only cause for damaging DDoS attacks succeeding is vulnerabilities within the organization’s DDoS protection infrastructure, due to the specific yet evolving environment.
This is the exact problem that MazeBolt RADAR solves.
What sets MazeBolt apart?
The only way to avoid damaging DDoS attacks is to eliminate vulnerabilities via DDoS protections. RADAR is unique in its ability to identify and remediate these DDoS vulnerabilities. RADAR revolutionizes the DDoS security landscape by ensuring DDoS protections are automated, without relying on manual intervention or SLAs, which can mean significant downtime.
RADAR’s technology is a patented non-disruptive DDoS testing solution: automated, adaptive, and autonomous. Continuously testing over 150 DDoS attack vectors against all targets in an organization’s environment, RADAR requires zero operational downtime or maintenance windows to run.
RADAR also validates DDoS protections, manual SLAs, TTMs (time-to-mitigation), and downtime requirements against automated DDoS protections. Thus, RADAR marks a paradigm shift in DDoS protection—from emergency remediation to preventative and proactive steps taken prior to a damaging attack.
What is the relationship between MazeBolt and F5?
Since RADAR’s commercial introduction in early 2021, MazeBolt and F5 have been successfully collaborating in this area, protecting large financial institutions, governments, and digital businesses against DDoS attacks. Customers of MazeBolt and F5 can now enjoy superior security without having to rely on emergency response during damaging DDoS attacks.
Using the vulnerability intelligence provided by RADAR, F5 SOC teams can reliably and predictably configure their security solutions to mitigate DDoS threats with F5’s security solutions. Mutual customers will achieve fully automated and continuous DDoS vulnerability management, protection, and remediation, without any disruption to online services. Combining F5’s solutions with RADAR provides enhanced protection for any customer.
The preferred remediation technology alliance's key mission is to ensure our mutual customers will not experience any damage due to a DDoS attack—and this first-ever cooperation is the best way to ensure that. In short, MazeBolt and F5 aim to enable organizations with the best automated DDoS security on the market.
What is the meaning of “Preferred Remediation Vendor”?
June of 2023 saw an industry-first announcement from MazeBolt and F5, with both companies announcing a new technology alliance partnership focused on allowing mutual customers to experience streamlined and predictable remediation of vulnerabilities identified with deployed DDoS protections.
Damaging downtime from a DDoS attack largely happens due to vulnerabilities created by misconfigurations in DDoS protections. Visibility and management of DDoS vulnerabilities are necessary to avoid downtime, as well as emergency response scenarios. Re-configuration of all organization-specific settings prior to an attack are critical to avoid such a situation.
Historically, it has been practically impossible to identify such misconfigurations because red-team DDoS testing requires downtime and maintenance windows. And relying on red-team tests alone made it impossible to validate 99.9% of any mitigation vendor’s DDoS configurations prior to any DDoS attack arriving.
A preferred remediation vendor is a mitigation provider that’s been identified by MazeBolt to be competent and cooperative in facilitating a streamlined process of a mutually shared goal: DDoS security that completely prevents a damaging DDoS attack.
For example, following the identification of DDoS vulnerabilities by RADAR, the F5 SOC team works with customers and MazeBolt to configure products and services, with zero downtime and no disruption to ongoing production, according to a prioritized plan. Once RADAR validates the fixes, it continues to test the customers’ environment for more vulnerabilities in layers 3,4, and 7 against over 150 DDoS attack vectors.
Who is the alliance intended for?
The preferred remediation alliance is based on F5’s team's proven ability to efficiently make use of RADAR and enable remediation through their security services, providing complete DDoS protection to mutual customers. It is also based on SOC and Professional Services teams effective noteworthy collaborations to date.
The alliance is intended for organizations that have an internal objective of zero downtime from DDoS attacks: a class of customers that downtime, in any capacity, is not an option. For example, financial institutions, governments, gaming companies, infrastructure, etc.
As a company, MazeBolt utilizes a vendor-neutral approach. MazeBolt acknowledges F5's ability and capacity to prioritize and remediate DDoS vulnerabilities in a streamlined, systemic fashion that ensures the best security available to customers, thus empowering stakeholders and security teams to adopt a new, transformative approach in automating DDoS security and achieving DDoS resilience.