Sandvine Enhances Network Security Product with Network Threat Deception and Decoy Capabilities

WATERLOO, ON, Nov. 8, 2016 /CNW/ - Sandvine, (TSX:SVC) a leading provider of intelligent broadband network solutions for fixed and mobile operators, today announced multiple new features for its Network Security product which enables Communications Service Providers (CSPs) to better protect their network infrastructure.

Sandvine's Network Security product now includes QuickSand, a feature, which protects networks using "decoy and deception" techniques to hinder malicious attackers by materially increasing the costs of the attacks and preventing their success. Sandvine's QuickSand achieves this by using multiple techniques, including:

  • Network Scale Tarpitting: Slows down the propagation of attacks and malicious activity by acknowledging requests made by malicious actors with information that falsely suggests progress while the attack is actually being mitigated.
  • Dynamic Vulnerability Masking: Identifies subscribers and servers that are running vulnerable software versions, and leverages Sandvine's SandScript capabilities to dynamically lead the potential attacker to believe that the secure version of the software is running instead, thereby preventing the attack before it starts.

Sandvine's Quicksand is complemented by the following additions to Sandvine's Network Security product:

  • DNS Cache Poisoning Protection: Prevents DNS server infections where a DNS request from a subscriber could be spoofed redirecting it to a malicious site. Sandvine Network Security ensures that the legitimate DNS server is used. This capability leverages leading third-party threat sources such as Symantec's DeepSightTM which provides the latest threat information of known phishing and other malicious sites.
  • Precision DoS/DDoS Attack Protection: Detects and mitigates more advanced surgical and fragmentation DDoS attacks using the subscriber, application and flow awareness of the Sandvine platform. This approach is a stark contrast to solutions that sample flows to identify potential DDoS attacks, a technique that is adequate only for large-scale, volumetric attacks.

Sandvine's Network Security product helps protect both subscribers and operators from within the CSP network, by increase the cost for attackers while preventing threats from ever reaching the subscriber's front door. With Network Security, CSPs can rapidly implement a wide range of valuable cyber security use cases for both residential, business and Internet of Things (IoT) customers, including:

  •      DDoS attack protection
  •      Botnet disruption
  •      Outbound email spam protection
  •      Malware scanning protection
  •      Malware infection prevention
  •      Phishing prevention
  •     Regulatory URL filtering
  •     Web filtering services
  •     Subscriber notification of infection
  •     Infection remediation support
  •     Real-time malicious traffic monitoring
  •     Detailed operational reporting and auditing


"Sandvine is committed to providing our carrier customers with new and innovative ways to protect their networks and their subscribers," said Don Bowman, CTO, Sandvine. "Not only are we working with best-of-breed data sources like Symantec, our engineers have developed an extensive organic roadmap which will allow Sandvine to protect our customers against the constantly evolving malicious attacks they face."

For CSPs interested in learning about the latest Network Security enhancements, Sandvine will be hosting a webinar on November 22, 2016 entitled "Building a Network That Fights Back Against Online Threats". The webinar will discuss how CSPs can create a multilayered security strategy that will secure their infrastructure's ability to deliver services, while at the same time protecting subscribers from online threats and complying with regulatory requirements. Those interested in attending can register at

Sandvine's network policy control solutions add intelligence to fixed, mobile and converged communications service provider networks, to increase revenue, reduce network costs and improve subscriber quality of experience. Our networking solutions perform end-to-end policy control functions, including traffic classification, policy decision and enforcement. Deployed as virtualized network functions or on Sandvine's purpose built hardware, the products provide actionable business insight, and the ability to deploy new consumer and business subscriber services, optimize and secure network traffic, and engage with subscribers.

Sandvine's network policy control solutions are deployed in more than 300 networks in over 100 countries, serving hundreds of millions of data subscribers worldwide.

Certain statements in this release which are not historical facts constitute forward-looking statements or forward-looking information within the meaning of applicable securities laws ("forward-looking statements") and are made pursuant to the "safe harbour" provisions of such laws. Statements related to the scope of deployment of Sandvine's products by a specific customer, the potential revenue opportunity with any particular customer or in any market segment, the benefits of Sandvine's products and services to be realized by customers, Sandvine's market position, future opportunities, product development plans and demand for Sandvine's products and services are forward looking statements, as are any statements relating to future events, conditions or circumstances. Readers are cautioned not to place undue reliance upon any such forward-looking statements. Such forward-looking statements involve both known and unknown risks and uncertainties that may cause the actual results, performance or achievements of Sandvine to differ materially from the results, performance, achievements or developments expressed or implied by such forward-looking statements. These risks and uncertainties include, without limitation, changes in internal deployment strategies or plans by specific customers; the growth of broadband internet usage and levels of capital spending on broadband network management systems; the timing of orders and manufacturing lead times; changes in customer order patterns or customer mix; insufficient, excess or obsolete inventory; increased competition in the broadband network equipment industry; dependence on the timely development and market acceptance of new product offerings and standards; rapid technological and market change; manufacturing and sourcing risks including dependence on key suppliers and key technologies; dependence upon indirect channel sales and resellers; factors such as business and economic conditions and growth trends in the broadband network equipment industry and in various geographic regions; global economic conditions and uncertainties in the geopolitical environment including the impact of regulation related to the internet and the delivery of internet services. Forward-looking statements are based on management's current plans, estimates, projections, beliefs and opinions, and Sandvine does not undertake any obligation to update forward-looking statements should assumptions related to these plans, estimates, projections, beliefs and opinions change, except to the extent required by applicable law.

SOURCE Sandvine

For further information: Investor Contact: Rick Wadsworth, Sandvine, +1 519 880 2400 ext. 3503,; MEDIA CONTACT, Dan Deeth, Sandvine, +1 519 880 2232,


Organization Profile


More on this organization

Custom Packages

Browse our custom packages or build your own to meet your unique communications needs.

Start today.

CNW Membership

Fill out a CNW membership form or contact us at 1 (877) 269-7890

Learn about CNW services

Request more information about CNW products and services or call us at 1 (877) 269-7890