RSS
Логотип
Баннер в шапке 1
Баннер в шапке 2
Project

Rostelecom repelled DDoS attacks during elections with the help of a Russian decision

Customers: Rostelecom

Moscow; Telecommunications and Communications

Contractors: Garda Techologies
Product: Garda Perimeter

Project date: 2019/06  - 2021/09

2021: Reflection of 19 DDoS attacks

Rostelecom repelled "Perimeter" all attacks during the election. This was announced on October 5, 2021 by Garda Techologies.

From September 17 to 19, 2021, 19 DDoS attacks were carried out on state electronic resources involved in the elections. Including attacked portals of State Services, remote voting systems and other significant targets.

Attackers organized multi-vector attacks using a large range of methods. The power of the attacks exceeded 70 Gbit/s, the longest went more than 5 hours. Most of the source addresses were located outside the Russian Federation.

All DDoS attacks were reflected by the Rostelecom Cybersecurity Center using a domestic solution manufactured by Garda Techologies - Perimeter, which has been the main component of the Rostelecom AntiDDoS system for several years and is responsible for providing reliable protection to its customers, including government customers.

File:Aquote1.png
It is more important than ever to provide high-quality protection against DDoS attacks for all government customers, and not only during elections. Regular updates, flexible settings, operational technical support - "Perimeter" in practice showed its superiority over well-known foreign analogues. Our plans are to further expand, increase functionality and increase the capacity of Perimeter, "said Alexei Sapunov, senior vice president for technical infrastructure at Rostelecom PJSC.
File:Aquote2.png

2019: Upgrade of the Perimeter hardware and software complex

On January 16, 2020, Rostelecom South announced the update of the Perimeter software and hardware complex manufactured by Garda Techologies (part of IKS Holding), which is integrated into a multi-layer DDoS protection infrastructure. With improved technologies and methods for suppressing attacks, their detection and inclusion of protection was reduced to a few seconds. At the same time, the functionality of describing attacks based on signatures helps to adapt the process of detecting malicious activity individually for each customer of the service Anti-DDoS PJSC Rostelecom.

Among other significant updates to Perimeter is a mechanism for consolidating DDoS vectors directed to one resource, which gives a complete picture of what is happening in real time. Now, for each attack vector, only the most effective suppression methods are automatically initiated. This approach allows you to point-activate the protection of the attacked resource, minimizing possible influences on legitimate traffic.

Automation of filtering using the BGP FlowSpec protocol on the perimeter of the Rostelecom network allowed to reduce the response time to volumetric attacks. Such attacks are now suppressed at the border of the Rostelecom network without the intervention of the service operation service.

File:Aquote1.png
Perimeter, combined with other DDoS filtering systems, has been used in Rostelecom for several years both to protect its own network resources and to organize client services. The update allowed us to raise the layered DDoS protection system to a higher level in terms of quality and functionality,
says Alexey Sapunov, senior vice president of technical infrastructure at Rostelecom
File:Aquote2.png

File:Aquote1.png
The technological development of the Perimeter software and hardware complex has always been based on the needs of key operators. communications Russia This allows us to maintain a high level of functionality of our products,
noted Roman Zhukov, director of the Garda Technologiya competence center, a Russian developer of information security systems
File:Aquote2.png