Proactive protection for your application layer
The application layer provides hackers with the widest surface attack that can bring major disruptions if exploited. AT&T application layer security helps defend against malicious attacks to keep your servers and applications running.
What AT&T application layer security can achieve for you
Proactive monitoring of all inbound and outbound traffic to provide early warning of potentially malicious activity.
Simplify security operations
Fully managed solution utilizing extensive security and business expertise to simplify your security operations.
24×7 monitoring to help quickly identify threats and minimize disruptions.
One convenient monthly charge with no upfront large capital investment.
AT&T application layer security helps provide a clear line of defense
AT&T Application Layer Security
AT&T application layer security is a managed security service for premises-based DDoS protection devices that is designed to offer protection from internet-borne threats before they reach the local firewall. This enhances the traditional security method of protecting the network border by enforcing controls at the network endpoints. The solution may be configured so that if a volumetric DDoS attack is detected it could request DDoS defense mitigations in the cloud to mitigate the attack.
Features and highlights
Quickly identify and stop threats in its track to minimize damage
AT&T will assist in the setup of the managed services and premises-based device(s) for AT&T owned devices and perform tuning based on your requirements.
The device can be configured for Inline-Inactive (analyze and detect) or Inline-Active (analyze, detect and mitigate) modes of operation. When in Inline-Active mode, the device may be configured to alert the AT&T DDoS defense service* via cloud signaling for volumetric attack protection.
*AT&T DDoS defense service subscription required.
Provides effective on-premises security for application traffic to help keep critical applications and servers available to the public.
Custom protection setting
Avoid potential congestion of the firewall and drop outbound traffic that violates the security policy based on defined protection settings on the managed device.
Ease of management
Easily manages routine tasks and provides access to alert and mitigation summaries via self-administration portal.
AT&T application layer security is security at the application layer, that helps to protect against application layer DDoS attacks. The fully managed service will provide configuration, administration, and troubleshooting of the premises-based device owned by AT&T or within the defined bound of managed service. If the customer owns a qualifying device, software, license and maintenance, standalone management can be provided.
It is designed to detect malicious traffic, either inbound or outbound, at the customer edge. It then mitigates attacks by dropping the malicious traffic at the customer’s network edge before exhausting the firewall or reaching the internal network, and it allows the flow of legitimate traffic in and out of the local network.
Application layer security devices allow for connection to AT&T DDoS defense service via cloud signaling of large attacks to initiate mitigations and scrub malicious packets upstream in the AT&T network.
Cloud signaling to a DDoS defense service feature is available on AT&T managed Application Edge Defense (AED) devices. To enable the connection, you first need to purchase the cloud-based DDoS defense service and cloud signaling feature and configure the cloud signaling on the premises-based device, either by AT&T if we manage the equipment or by the customer.
Application layer service may be provided whether or not AT&T is the internet access provider and whether AT&T owns the qualifying premises-based device.
The device is monitored 24×7 and placed at specific locations in the path of your internet access on your site. A device may monitor and provide protection against application specific DDoS attacks using intelligence feed and third-party Indicators of compromise.
Our expansive network of experts and broad security solutions enable us to provide unrivaled visibility at every layer, so you can be better prepared against threats today and every day. Customers have the flexibility to address DDoS attacks using a hybrid approach through cloud-based DDoS defense service which can interface with application layer security service for a more robust security posture.