In 2016 Serverius became the Dutch leader DDoS protection. That’s quite amazing against all (worldwide) competitors. Let’s see in a DDoS protection comparison why IP network owners like our product so much.
During my daily advisory work, a lot of people asked me what the difference is between Serverius and other companies when it comes to DDoS protection. “Why are you better than my current supplier?” Most of the time this question is based on their lack of knowledge of technical features that might be needed in the future. The solution of defending future DDoS attacks will be in the details. But what can you expect during these future attacks?
The only solution for network owners is a combination of advanced tooling. Therefore I created the comparison table below to show people what the rough differences are between different parties.
Sem Hindriksen, Solution manager at Serverius
DDoS protection comparison table
This DDoS protection comparison is based on the most used companies in the Netherlands that are offering DDoS protection as a service. All parties offer services by their own hardware infrastructure, no external services can be used. All companies that are reselling or partially use of others are excluded (this exclude around 94% of all Dutch service providers). The offered service should be IP based, protecting all IP protocols, services and port numbers without any other (hosting) services.
The word “DDoS protection” is used by many companies in lots of different ways. For some it’s to protect a website, another will tell you it’s to protect against congested uplinks and another will offer a full IP security layer with many other protection techniques. Let’s put all cards on the table and see what the differences are.
Keep in mind that the best DDoS protection provider does not exist. Every user will have it’s own and different protection goals. But still there are quite some differences in quality and pricing. Some services offer the same or less and are still more expensive than others. Therefore the scheme below will give you an better overview of the differences. I hope you enjoy!
All companies in the table above were asked upfront (by email and telephone) to fill in all items of the comparison table. Unfortunately some did not
want to cooperate. For those I tried to fill in all data as good as possible but if you think something should be changed, please let me know: firstname.lastname@example.org
No winners, but lots of differences
Like you’ll see in the table above there are many differences between Serverius and others and no one is the real winner. But you’ve probably noticed some clear differences now. Some like Incapsula and Akamai offer a wide range of web application firewall (WAF) features and for example Nawas is offering way less protection functionality and lower performance without any remote control and is even more expensive than Voxility or Serverius.
Also the user control approach is quite different between all of them. Some only offer their service like one big magic black box without any user control. Others provide a simple web-interface to view statistics and others will offer a fully customized webinterface where users can create their advanced security layers per IP subnet or application. Therefore my advice is always to take a closer look of what you really need in your situation. Because when you want to protect a full IP infrastructure, you will need the most control and insight you can get. It will also save you a lot of support desk communication and it will reduce the noise on critical moments when you are under DDoS attack. In total it will higher the level of protection.
100% uptime guarantee
A clear Service Level Description is a must have at any DDoS protection service. It will explain the service principles that will avoid false user expectations afterwards.
During my interviews with all companies, some of them surprisingly added a 100% uptime guarantee in their SLA. I asked them for a clear explanation but unfortunately they could not provide this to me. One told me “Just trust us it will work because we are the biggest and the best!” another told me “If our protection will not work a client can cancel his contract”. The other one explained to me that they offered 100% guaranteed protection by a customized SLA document that they sell to clients as an extra. Surprisingly he was not allowed to share an example with me, nor he could tell me what the financial penalty will be when their protection will fail. Of course sales people will use it for marketing, but in reality no one can offer it. For example, even the largest networks like Akamai were not able to hold the Mirai botnet attack in 2016. All together it shows that 100% uptime guarantee is simply impossible because nobody can look into the future.
In-house Research & Development
In the ongoing battle against attackers, it is key to have a well organized R&D that will examine every new attack and adjust the global protection layer with that information. In the past 2 years our company had a lot of clients that moved from other suppliers because their IP application could not be protected elsewhere.
I’m not going to lie, it took really a lot of effort to get those applications well protected. In two advanced situations we were only able to protect them partly (the user accepted the better than nothing principle). This shows that a fanatic team of engineers is really needed to assist users in the complicated cases. If new defense mechanisms are needed to protect against new attacks, the R&D should add them asap. Therefore a normal support team will not be enough. My personal opinion is even without the human thought, any DDoS protection system is worthless because new application are build by humans, attacked with new attack techniques that are developed by humans so also the defense technology should be configured and supported by humans.