Akamai Deck Open Banking Roundtable 2018

Transcript

1. API Security Jay Coley Senior Director – Security Planning and

   Strategy, Akamai Technologies

2. ©2017 AKAMAI | FASTER FORWARDTM 2016 │ Bot Manager 1998

   │ Akamai founded 2003 │ Prolexic founded 2015 │ Client Reputation 2015 │ Managed WAF 2014 │ >321 Gbps DDoS 2014 │ Prolexic acquired 2014 │ KRS 2013 │ CSI 2011 │ >69 Mpps DDoS 2011 │ Kona Site Defender 2009 │ First cloud WAF 2009 │ Korea DDoS attacks 2008 │ Largest DDoS >80G 2007 │ Largest DDoS >50G 2004 │ Largest DDoS <10G 2003 │ Prolexic founded 2003 │ Site Shield introduced Secure web systems for OVER 19 YEARS 2016 │ IoT Botnets 2016 │ Largest DDoS >630G 2016 │ Credential Abuse 2017│ Bot Manager Premier 2017│ WireX 2017│ API Protection ` 2018│ Largest DDoS >1.35Tbps

3. ©2017 AKAMAI | FASTER FORWARDTM Grow revenue opportunities with fast,

   personalized web experiences and manage complexity from peak demand, mobile devices and data collection. Over 250,000 servers Deployed in more than 3,500 locations and 1,600 networks in 128 countries A cloud platform with INTERNET SCALE ©2016 AKAMAI | FASTER FORWARDTM

4. ©2017 AKAMAI | FASTER FORWARDTM ©2016 AKAMAI | FASTER FORWARDTM

   8.7 Tbps 13.0 Tbps 15.4 Tbps 26.0 Tbps 33.6 Tbps 41.0 Tbps 2010 2011 2012 2013 2014 2015 2016 A cloud platform that SCALES FOR YOU > 60.0Tbps 2011 2012 2013 2014 2015 2016 2017

5. ©2017 AKAMAI | FASTER FORWARDTM Continued Innovation CLOUD SECURITY MISSION

   Exploit DoS Abuse Protect our customers from the most sophisticated and well- funded adversaries ©2018 AKAMAI | NDA Required | FASTER FORWARDTM

6. ©2017 AKAMAI | FASTER FORWARDTM Single data center API Business

   initiatives increase ATTACK SURFACE API Distributed footprint Cloud provider Hosted applications Applications Multiple data centers Remote access API API

7. ©2017 AKAMAI | FASTER FORWARDTM API API Partner with Akamai

   SECURITY STRATEGY Infrastructure – Denial of service – Malware prevention

8. ©2017 AKAMAI | FASTER FORWARDTM API API Partner with Akamai

   SECURITY STRATEGY Access – Enterprise access management

9. ©2017 AKAMAI | FASTER FORWARDTM Partner with Akamai SECURITY STRATEGY

   API API Application – API Protection – Denial of service – Web application firewall – Bot management – DNS

10. Threat Landscape

11. ©2017 AKAMAI | FASTER FORWARDTM Top external attack vectors 11%

    18% 20% 22% 28% 34% 37% 37% 42% Exploitation of lost/stolen asset Mobile malware DNS Strategic web compromise… DDoS Web application (SQL injection,… User interaction (phishing,… Use of stolen credentials (logins,… Software vulnerability (software… Source: The State of Network Security: 2016-2017, Forrester, January 2017 Exploitation of lost/stolen asset Mobile malware DNS Strategic web compromise… DDoS Web application (SQL injection,… User interaction (phishing,… Use of stolen credentials (logins,… Software vulnerability (software… BUSINESS RISK

12. ©2017 AKAMAI | FASTER FORWARDTM DDoS Attack Frequency by Industry,

    Q3 & Q4 2017

13. ©2017 AKAMAI | FASTER FORWARDTM Financial Services Industry DDoS Attack

    Count by Week, Q4 2017

14. ©2017 AKAMAI | FASTER FORWARDTM Financial Services Industry Attack Vector

    Count by Week, Q4 2017

15. ©2017 AKAMAI | FASTER FORWARDTM Financial Services Industry Attack Vector

    Percentages, Q4 2017

16. ©2017 AKAMAI | FASTER FORWARDTM Compared to Q3 2017 (Quarter

    Over Quarter) 9%ê Total web application attacks 29%ê Attacks sourcing from the U.S. (top source country) 9%ê SQLi attacks

17. ©2017 AKAMAI | FASTER FORWARDTM Compared to Q4 2016 (Year

    Over Year) 10%é Total web application attacks 31%é Attacks sourcing from the U.S. (top source country) 10%é SQLi attacks

18. ©2017 AKAMAI | FASTER FORWARDTM Web Application Attack Frequency, Q4

    2017

19. KSD and API

20. ©2017 AKAMAI | FASTER FORWARDTM A 300,000 servers 1,500 networks

    120 countries Drops layer 3/4 attacks IPv6 Rate Controls Whitelist and Blacklist Serves Cached Content Reduces risk of downtime 85% of users 1 hop away Akamai absorbs and delivers enormous amounts of traffic KSD DDOS ATTACK MITIGATION

21. ©2017 AKAMAI | FASTER FORWARDTM Reduces risk of defacement and

    data theft Kona Rule Set Custom Rules Attack Reports Machine Learning Site Failover API Protection Application Security Web Application Firewall

22. ©2017 AKAMAI | FASTER FORWARDTM Static Content Caching Dynamic Content

    Cache Compression Capacity on Demand Ensures smooth delivery, even during flash crowds Dynamic Site Delivery Built in Performance

23. ©2017 AKAMAI | FASTER FORWARDTM KSD API Protection (details)

24. ©2017 AKAMAI | FASTER FORWARDTM KSD API Protection (details)

25. ©2017 AKAMAI | FASTER FORWARDTM But Don’t Take Our Word

    For It… • Gartner named Akamai a “Leader” in the 2017 Web Application Firewall Magic Quadrant • Akamai strengths: • API protections • Professional Services • Security Operations Center • Customer Satisfaction This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Akamai. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

26. Thank You!