下载PDF
Signal Sciences > 实例探究 > Vimeo:增强安全性并扩展攻击检测,产生立竿见影的效果
Signal Sciences Logo

Vimeo: Enhancing Security and Scaling Attack Detections with Immediate Impact

技术
  • 网络安全和隐私 - 应用安全
  • 网络安全和隐私 - 入侵检测
适用行业
  • 水泥
  • 国家安全与国防
适用功能
  • 维护
用例
  • 供应链可见性(SCV)
  • 篡改检测
服务
  • 测试与认证
挑战
Vimeo 是全球领先的专业视频平台,在维护其快速扩大的用户群(全球超过 1.5 亿用户)的安全方面面临着重大挑战。该公司的快速增长和最近的收购需要强大的应用程序安全计划来防止 XSS、SQLi、API 滥用和帐户接管等流行攻击。此外,Vimeo 需要一种能够与其新建的 AWS 基础设施无缝集成且无需大量工具和维护的解决方案。该公司还寻求将所有需求整合到一个供应商下,以便于多个团队使用。缺乏对生产流量和新的并购活动的可见性进一步凸显了攻击检测现代化的必要性。
关于客户
Vimeo 是领先的专业视频平台,提供用于托管、共享和流式传输高清视频的强大工具。 Vimeo 在全球拥有超过 1.5 亿用户,最近进行了多次收购,正在经历快速增长。尽管如此,该公司仍然高度重视确保创作者和观众在其网站上获得无缝体验。为了支持其最近的增长,Vimeo 认识到需要加强其当前的应用程序安全计划,以防止普遍的攻击并确保用户及其数据的安全。
解决方案
Vimeo 实施 Signal Sciences 的原因是其全面的检测和阻止功能、易用性、最少的配置和维护以及对其应用程序的攻击的广泛可见性。 Signal Sciences 现在为所有 Vimeo 面向公众的生产站点上数十亿的日常请求提供深度攻击检测和阻止功能。在 30 天内,Vimeo 能够在新收购的所有基础设施中安装、测试和部署该解决方案。 “开箱即用”的配置立即提升了整体可见性,并阻止了大量虚假流量攻击 Vimeo 的资源。该解决方案还允许 Vimeo 快速部署到所有新收购的资产中,为他们提供以前缺乏的流量洞察。
运营影响
  • The implementation of Signal Sciences has resulted in significant operational benefits for Vimeo. The solution's immediate time-to-value was a critical selling point, providing uplift not only for general visibility but also for stopping a lot of bogus traffic from hitting Vimeo's resources. This has resulted in lower resource utilization and nearly non-existent operational expenses, allowing Vimeo to direct manpower towards more critical tasks. Furthermore, with better visibility into their traffic signals and more dedicated resources, Vimeo has been able to take on security projects with the data and automation Signal Sciences provided. In one unique use case, Vimeo implemented a callback to automatically roll back user accounts flagged for suspicious behavior, enhancing user protections while complementing other in-house tooling for the safest and best user experience.
数量效益
  • Signal Sciences was installed, tested, and deployed in production across all of a new acquisition's infrastructure within 30 days.
  • Signal Sciences provides deep attack detection and blocking capabilities for billions of daily requests on all of Vimeo’s public-facing production sites.
  • Signal Sciences requires no rules or ongoing maintenance to stop OWASP Top 10 attacks, saving Vimeo hours of tuning and testing.

相关案例.

联系我们

欢迎与我们交流!

* Required
* Required
* Required
* Invalid email address
提交此表单,即表示您同意 IoT ONE 可以与您联系并分享洞察和营销信息。
不,谢谢,我不想收到来自 IoT ONE 的任何营销电子邮件。
提交

Thank you for your message!
We will contact you soon.