Radware Launches Alteon Protect: Cloud-Augmented WAF Without SSL Key Sharing
Radware's new Alteon Protect separates cloud-based threat detection from on-device enforcement, letting organizations add WAF, bot, API, and DDoS protection to existing ADC infrastructure without rerouting traffic or sharing SSL certificates.
Radware announced Alteon Protect, a new product that bolts cloud-based threat detection onto its Alteon application delivery controllers. The pitch: get real-time WAF, bot mitigation, API protection, and layer 7 DDoS defense without redesigning your network or handing over SSL certificates.
How it works
Alteon Protect splits the security stack into two layers. Detection and intelligence run in Radware's cloud platform, powered by their AI-driven engines. Enforcement stays on the local Alteon ADC hardware. Traffic never leaves the customer's network for inspection, and SSL keys stay on-premises.
This is a different approach from most cloud WAF providers like Cloudflare or Akamai, where traffic is routed through the provider's network for inspection. Radware is betting that enterprises with existing ADC investments want cloud-grade protection without cloud-grade architectural changes.
What it covers
The product bundles four protection categories into one platform:
- Web application firewall (WAF) with cloud-augmented rulesets
- Layer 7 Web DDoS mitigation
- Bot management and detection
- API abuse protection
Capacity scales through Radware's Global Elastic Licensing (GEL) model, so organizations can expand coverage without buying new hardware. MSSPs and service providers get multi-tenant support for reselling managed security services.
WAFplanet take
This is a smart move from Radware. Plenty of enterprises sit on expensive ADC hardware and resist cloud WAF migration because it means rerouting traffic, sharing SSL keys, and adding latency. Alteon Protect lets them keep what works and layer security on top.
The real question is execution. Hybrid architectures are notoriously hard to keep in sync, and cloud detection with local enforcement introduces latency between spotting a threat and blocking it. If the cloud-to-device feedback loop is fast enough, this could be compelling for organizations that need F5-class ADC performance with Imperva-class cloud intelligence.
For teams already running Alteon ADCs, this is worth evaluating. For everyone else, it is another signal that the WAF market is moving toward hybrid models where cloud intelligence and local enforcement coexist.
