Qrator DDoS Protection

The Qrator network is designed and built to operate under constant pressure of a large number of DDoS attacks. The nodes of the network are connected to the channels of the largest mainline Internet service providers of United States, Russia, Eastern and Western Europe, Southeast Asia. This means that, unlike hosting providers’ networks (especially ones that provide virtual hosting), our network is able to handle extreme loads and the attack on one of our customer’s domains won’t affect the performance of other domains in any way. DDoS Classification The main criteria for classification is determining which parts of the network are targeted by the attack. We classify DDoS attacks by the following layers:

• Channel capacity
• Network infrastructure
• Protocol stack
• Web application

Specifications The Qrator network specifications are represented by the following basic features:

• ~1000Gbps passive bandwidth – determined IP packet processing without establishing TCP connection
• >300Gbps active bandwidth – every incoming TCP connection is processed and analyzed
• <5% false-positive incidents during DDoS attack mitigation
• Time needed by the network to learn, counted from the moment of connection
• Added latency when traffic proxying is used – 0 to 100ms. In case HTTP traffic comes through the proxy, due to using persistent HTTP connections with your protected service there is a possibility of increase in its performance.