Detection of volume-based attacks aiming to saturate the bandwidth of the access or overwhelm networks, blocking and denying the victim of legit traffic flow essential for serving legit network services.

Detection of attacks that mimic legitimate and innocent application-based requests in large and repeated instances, targeting to overwhelm and crash web servers who cannot cope with the increased request instances, in which the magnitude is measured in Requests per second (Rps).

Mitigation of DDoS attacks detected by SPTel DDoSProtect platform. There is a choice of 2 modes of mitigation available:  

1. Initiated - Mitigation activate upon Customer’s initiation via Customer Portal
2. Automatic - Mitigation set to activate automatically upon DDoS detection

When the total traffic hits the 80% of the prescribed mitigation capacity, a notification will be sent to Customer User to prepare for additional mitigation actions.    

Additional mitigation bandwidth can be purchased on demand when the DDoS attack brings total traffic levels up to and beyond the mitigation capacity limit so to reduce disruption to their legit traffic. If Additional DDoS Attack Bandwidth Protection is not purchased, SPTel IOC will apply blackholing policy to the customer’s Internet service in its discretion to limit the impact to its network.

Protection of customer DNS servers from inbound DNS based DDoS attacks that take advantage of vulnerabilities in the domain name system (DNS).

Pre-requisite:  Application-Layer DDoS Detection

Protection from application DDoS and misuse attack that are harder to detect and appear like legitimate traffic, slipping unnoticed through detection engines without a signature based analysis tool.

Pre-requisite:  Application-Layer DDoS Detection

Larger scale DDoS campaigns can be diverted to Cloud Mitigation service where our global partner’s advanced Cloud DDoS protection engines are scaled and engineered to address attacks of such nature. The mitigation capacity of 100Mbps assured Clean Traffic is provisioned in the Premium+ package by default.  

SPTel IOC will monitor and triage attacks with Customer and global partner’s Cloud SOC for the diversion of traffic to the Cloud mitigation platform. The Cloud mitigation dashboard will be available for Customer to view and monitor the mitigation. 

There are several pre-requisites for onboarding.

• Possess a dedicated /24 prefix range
• CPEs must be GRE compatible, with tunable MTU configuration
• Sign-off Letter of Authorization and compliance to verification process

This feature is exclusively available under Premium+ package.

Additional Cloud mitigation capacity that can be activated when the attack breaches the subscribed Cloud mitigation capacity limit. This feature is a VAS exclusively available under Premium+ package.

The SPTel IOC runs 24.7.365, managing and running round the clock watch on security incident escalations for all security services.  The IOC is powered by cutting edge Next-Generation SIEM integrated with SPTel’s network monitoring platform, engineered to offer customers fast and accurate notifications and reports.

Definition of a bespoke set of notification instructions for SPTel IOC to liaise with Customer on security escalations.