be_ixf;ym_202010 d_26; ct_50

Proactive protection for your application layer

The application layer provides hackers with the widest surface attack that can bring major disruptions if exploited. AT&T application layer security helps defend against malicious attacks to keep your servers and applications running.

Benefits

What AT&T application layer security can achieve for you

Proactive monitoring

Proactive monitoring of all inbound and outbound traffic to provide early warning of potentially malicious activity.

Simplify security operations 

Fully managed solution utilizing extensive security and business expertise to simplify your security operations.

Quick response

24x7 monitoring to help quickly identify threats and minimize disruptions.

Operational expense

One convenient monthly charge with no upfront large capital investment.

Overview

AT&T application layer security helps provide a clear line of defense

AT&T Application Layer Security

Starting at

$800*

AT&T application layer security is a managed security service for premises-based DDoS protection devices that is designed to offer protection from internet-borne threats before they reach the local firewall. This enhances the traditional security method of protecting the network border by enforcing controls at the network endpoints. The solution may be configured so that if a volumetric DDoS attack is detected it could request DDoS defense mitigations in the cloud to mitigate the attack.

Contact us

Features and Highlights

Quickly identify and stop threats in its track to minimize damage

Features

Details

Local deployment AT&T will assist in the setup of the managed services and premises-based device(s) for AT&T owned devices and perform tuning based on your requirements.
In-line protection

The device can be configured for Inline-Inactive (analyze and detect) or Inline-Active (analyze, detect and mitigate) modes of operation. When in Inline-Active mode, the device may be configured to alert the AT&T DDoS defense service* via cloud signaling for volumetric attack protection.  

*AT&T DDoS defense service subscription required. 

Always-on Provides effective on-premises security for application traffic to help keep critical applications and servers available to the public.
Custom protection setting Avoid potential congestion of the firewall and drop outbound traffic that violates the security policy based on defined protection settings on the managed device.
Ease of management Easily manages routine tasks and provides access to alert and mitigation summaries via self-administration portal. 

Resources

Discover how we can help protect your data

Solution Brief

Get the blueprint on integrating security at each layer of your business (PDF).

Product Brief

Add DDoS defense to your multi-layer cyberdefense strategy – now with simplified contracting!

 
 

FAQ

What is application layer security?

AT&T application layer security is security at the application layer, that helps to protect against application layer DDoS attacks. The fully managed service will provide configuration, administration, and troubleshooting of the premises-based device owned by AT&T or within the defined bound of managed service. If the customer owns a qualifying device, software, license and maintenance, standalone management can be provided.

How does application layer security work?

It is designed to detect malicious traffic, either inbound or outbound, at the customer edge. It then mitigates attacks by dropping the malicious traffic at the customer’s network edge before exhausting the firewall or reaching the internal network, and it allows the flow of legitimate traffic in and out of the local network.

How does AT&T DDoS defense service connect to application layer security devices?

Application layer security devices allow for connection to AT&T DDoS defense service via cloud signaling of large attacks to initiate mitigations and scrub malicious packets upstream in the AT&T network.

How do I connect my premises-based device to the cloud-based DDoS defense service?

Cloud signaling to a DDoS defense service feature is available on AT&T managed Application Edge Defense (AED) devices. To enable the connection, you first need to purchase the cloud-based DDoS defense service and cloud signaling feature and configure the cloud signaling on the premises-based device, either by AT&T if we manage the equipment or by the customer.

Do I need to have AT&T as my internet access provider to be eligible for this service?

Application layer service may be provided whether or not AT&T is the internet access provider and whether AT&T owns the qualifying premises-based device.

How is the application layer security device monitored and placed?

The device is monitored 24x7 and placed at specific locations in the path of your internet access on your site. A device may monitor and provide protection against application specific DDoS attacks using intelligence feed and third-party Indicators of compromise.

Why AT&T for application layer security?

Our expansive network of experts and broad security solutions enable us to provide unrivaled visibility at every layer, so you can be better prepared against threats today and every day. Customers have the flexibility to address DDoS attacks using a hybrid approach through cloud-based DDoS defense service which can interface with application layer security service for a more robust security posture.

Request info

To get sales help from an AT&T Cybersecurity specialist, please complete this form.