Case Studies - How RedShield Protects Critical Web Apps

Having it All: A Hybrid Cloud and On-Premise Services

Written by RedShield Security | 27/01/2021 12:15:00 AM

The problem

The telecommunications company’s ecommerce business was thriving, quashing competition and necessitating a transfer of workload to Amazon Web Services. But, at the same time, they wanted to maintain control over a wide range of other assets and areas, including customer care data and the testing and development environments. On top of that, they needed the flexibility to be able to make changes when they were needed, across all environments.
The telco team quickly learned that their unique requirements—handing off some systems while keeping control of others—added up to a very tall order. The problem came down to their established process of operating all their services under the same domain name. This approach limited their ability to move information and services among different data centers and countries. They needed a team of experts who were up for a challenge. RedShield was ready.
 

The solution

The RedShield team cooked up a dynamic, server-side architecture that freed a telco company user to choose a destination server based on any combination of source IP, domain name, folder, and header.
 
RedShield ensured the system would work for both fully qualified domain names, and variations. The team also developed dedicated IP addresses to allow the telco to provide no-cost internet access under certain circumstances—a service known as zero-rate billing. RedShield added caching and comprehensive monitoring to improve service performance and service assurance.
 

The results

After in-depth testing, RedShield deployed the new web application shielding system, making any needed modifications to the telco’s domain name system. The new routing worked seamlessly, as did everything else. And, that stability continues today. To maintain security and boost service assurance, RedShield continues to monitor for volumetric DDoS threats–large, sustained attacks that could overwhelm the telco’s systems.
 
Today, RedShield continues to stand guard:
  • Monitoring the telco’s tools and systems, 24/7
  • Auditing application defenses weekly
  • Responding to any customer queries and application updates
  • Providing monthly analysts’ reports

“When we think of a new routing scenario, we just tell RedShield and it gets implemented. It’s easy to forget that the other guys couldn’t even meet our basic requirements.”
—Telecommunications Company Executive