About Radware

Radware Ltd. (Radware) operates as a provider of cyber security and application delivery solutions for cloud, on-premise, and software defined data centers (SDDC). The company’s solutions secure the digital experience by providing infrastructure, application, and network protection and availability services to enterprises globally. The company’s solutions are deployed by, among others, enterprises, carriers and cloud service providers. In February 2022, the company announced a strategic initiative to accelerate the growth of the company’s cloud security business, which entails, among other things, the acquisition of the technology and operations of SecurityDAM, growing the company’s innovation center in India, and expanding the company’s cloud service capacity and delivery network. In May 2022, the company announced the launch of SkyHawk (CNP) Security Ltd., or SkyHawk Security, a spinoff of the company’s Cloud Native Protector business with a strategic external investment of an affiliate of Tiger Global Management. The company’s solutions are offered in two main categories: Products – The company offers a range of cloud-based subscriptions, on-premise products, software products and product subscriptions (or a combination of these) to the company’s customers. Services – The company offers technical support, professional services, managed services and training and certification to the company’s customers. Products The company’s cloud-based subscription offering consists of the following key cloud-based subscriptions: Cloud DDoS Protection Service: The company’s Cloud DDoS Protection Service provides a full range of enterprise-grade DDoS protection services in the cloud. Based on the company’s DDoS protection technology, it intends to offer organizations wide security coverage, accurate detection and short time to protect from dynamic and evolving DDoS attacks. The company offers a multi-vector DDoS attack detection and mitigation service, handling network-layer attacks, server-based attacks and application-layer DDoS attacks. The company’s Cloud DDoS Protection Service is offered in multiple deployment options to meet an organization’s specific needs: Always-On Cloud DDoS Protection Service: This service provides always-on protection where traffic is always routed through Radware’s cloud security scrubbing centers with no on-premise device required for detection and mitigation. This service is recommended for organizations that have applications hosted in the cloud or those that are not able to deploy an on-premise attack mitigation device in their data center. Always-On Hybrid Cloud DDoS Protection Service: This service integrates with the company’s on-premise DDoS Protection device. The traffic is mitigated in the on-premise device and diverted through Radware’s cloud security scrubbing centers upon a large volumetric DDoS attack that aims to saturate the internet pipe. This service is recommended for organizations that place a high premium on the user experience and wish to avoid even the slightest possible downtime as a result of DDoS attacks. On-Demand Cloud DDoS Protection Service: This service protects against internet pipe saturation and is activated when the attack threatens to saturate the organization’s internet pipe. This service is recommended for organizations that are looking for the lowest cost solution and are less sensitive to real-time detection of DDoS attacks. On-Demand Cloud Hybrid DDoS Protection Service: The on-premise DefensePro device detects and mitigates all types of DDoS attacks in real-time, while volumetric DDoS attacks are diverted and mitigated in the cloud. This service is recommended for organizations that can deploy an on-premise device in their data centers. Cloud WAF Service: The company’s Cloud WAF Service provides enterprise-grade, continuously adaptive web application and API protection. Based on the company’s ICSA Labs certified web application firewall, it provides full coverage of OWASP Top-10 threats and automatically adapts protections to evolving threats and protected assets. Cloud WAF service includes built-in DDoS protection, integrated bot mitigation and application analytics to simplify security event management by taking massive amounts of alerts and consolidating them into a small, manageable set of user activities. With the company’s SecurePath architecture, Cloud WAF Service can be easily deployed as an API-based, out-of-path service across any hybrid or cloud environment, securing applications with centralized visibility and management console. The company’s Cloud WAF is available in two packages: Enterprise Package: Includes a comprehensive web security coverage, including OWASP Top-10, advanced attacks and zero-day attack protection, that is fully managed and monitored 24x7 and designed to guarantee service availability at any given time with protection against emerging web application and DDoS attacks. Enterprise Premium Package: Includes all web security and managed services offered in the Enterprise package, in addition to a dedicated technical account manager and ERT expert, as well as pre and post attack alerts and reports and ongoing updates from Radware’s security experts. Bot Manager: The company’s Bot Manager provides comprehensive protection of web applications, mobile apps and APIs from automated threats like bots. Bot Manager provides precise bot management across all channels by combining behavioral modeling for granular intent analysis, collective bot intelligence and fingerprinting of browsers, devices and machines. It is designed to protect against all forms of account takeover (credential stuffing, brute force, etc.), denial of inventory, DDoS, ad and payment fraud and web scraping to help organizations safeguard and grow their online operations. Cloud Native Protector (CNP) Service: The CNP service provides an agentless cloud-native security solution for applications, workloads and infrastructure hosted on AWS and Microsoft Azure. The CNP service offers multi-layered protection to reduce risk by continuously verifying compliance against multiple security standards, identifying publicly exposed assets, keeping track of asset inventory with prioritized cross-cloud visibility, fortifying the cloud threat surface with context-aware smart hardening, and providing advanced attack detection and remediation capabilities to stop data theft attempts. Cloud Application Protection Services: The company’s Cloud Application Protection Services secures business applications through a single platform, including WAF, bot management, API protection and application DDoS protection. The company’s Cloud Application Protection Services offers the following application security capabilities: Protect Digital Assets and Data: The company’s Cloud Application Protection Services protects digital assets and customer data in multiple environments, such as on-premise, virtual clouds, private clouds, public clouds, hybrid environments, or Kubernetes. Protect Against OWASP Vulnerabilities: The company’s solution protects against various known attack vectors, including the OWASP Top 10 Web Application Security Risks, Top 10 API Security Vulnerabilities and Top 21 Automated Threats to Web Applications. Protect Against Zero-Day Attacks: The company’s positive security model assists in stopping unknown threats in their tracks. The company’s machine-learning analysis engine continuously studies application traffic and end-user behavior to build and enhances security policies that reduce exposure to zero-day attacks. Detect, Manage, and Mitigate Bots: The company’s solution detects and distinguishes between ‘good’ bots and ‘bad’ bots to protect websites, mobile apps and APIs against a wide range of application attacks, such as account takeover credential, denial of inventory, ad and payment fraud, web scraping and more. Protect APIs: API attacks are a rapidly growing threat to business applications and customer data. The company’s solution combines behavioral analysis and policy automation to protect evolving API matrix from increasingly sophisticated API assaults. Mitigate Application-Level DDoS Assaults: The company’s DDoS protection technologies detect and mitigate HTTP-based DDoS assaults. Utilizing a patented keyless SSL protection technology, it keeps applications protected while maintaining user data confidentiality and compliance with privacy regulations. The company’s physical and software products consist of the following key products: DefensePro Attack Mitigation Device: DefensePro is a real-time network attack mitigation device that protects the data center and application infrastructure against network and application denial of service, application vulnerability exploitation, network anomalies and other emerging network attacks. Radware Kubernetes WAF: Radware Kubernetes WAF is a Web Application Firewall solution for CI/CD environments orchestrated by Kubernetes. The company’s Kubernetes WAF integrates with common software provisioning, testing and visibility tools in the CI/CD pipeline offering both IT security and DevOps personnel detailed insight down to the pod and container levels, and enables organizations to implement application and data security in on-premise and cloud-based implementations. Cyber Controller: The company’s Cyber Controller is a unified solution for management, configuration and attack lifecycle. The Cyber Controller provides enhanced security, increased visibility and an improved user experience via multiple security operation dashboards for a unified view into attack lifecycle and mitigation analysis for both inline and out-of-path DDoS deployments. Cyber Controller provides network analytics with comprehensive visibility of traffic statistics during peacetime and attack, simplified management and configuration with unified visibility and control. Alteon Application Delivery Controller (ADC): Alteon is the company’s application delivery and security solution that manages application traffic across cloud and data center locations, optimizing availability and performance. It provides advanced, end-to-end local and global load balancing capabilities for web, cloud and mobile-based applications. Alteon integrates multiple application protection services to provide protection against an array of cyberthreats. Alteon’s analytics also provides insightful visibility so that IT managers can manage and guarantee application service level agreement (SLA) and stay ahead of cyberattacks. The company offers Alteon ADC in three different packages (available on each of its models and throughput levels) to address different deployment scenarios and needs: Alteon Deliver Package: For applications that require high performance ADCs with advanced layer 4-7 ADC functionality. Alteon Perform Package: For deployments requiring performance optimization, advanced application performance monitoring, global server load balancing, link load balancing and automated/optimized ADC service operation. Alteon Secure Package: For applications that require the company’s most advanced protections, including an embedded Web Application Firewall (WAF) module, authentication gateway, bot management, threat intelligence feeds (ERT Security Updates Service, ERT Active Attackers Feed and ERT Location-based Mitigation) and SSL processing from perimeter security devices (with its embedded SSL inspection module). LinkProof NG: LinkProof NG is a multi-homing and enterprise gateway solution that allows service level availability and continuous connectivity of enterprise and cloud-based applications. It is an application-aware multi-homing and link load balancing module that delivers 24/7 continuous connectivity and service level assurance, improved performance and cost-effective scalability of bandwidth for corporate and cloud-based applications. The company’s product-based subscription offering consists of the following product-based subscriptions: ERT Security Updates Subscription (SUS): The company’s Security Update Subscription is a security-advisory and managed monitoring and detection system dedicated to protecting network elements, hosts and applications against the latest security vulnerabilities and threats. The Security Update Subscription delivers periodic, emergency and custom attack signature updates to subscribers to protect against known attack patterns. The service is available for DefensePro and Alteon Integrated WAF. ERT Active Attackers Feed: The company’s ERT Active Attackers Feed (EAAF) is a threat intelligence feed designed to protect against emerging DDoS threats, including those involving Internet of Things (IoT) botnets and new DNS attack vectors. The EAAF subscription enhances the company’s attack mitigation solution by identifying and blocking IP addresses involved in major attacks in real time to offer preemptive protection from known attackers. This subscription is available for DefensePro, Alteon ADC and Cloud Application Protection Services. ERT Protection Packages: The company’s ERT Protection packages bundle its ERT services into two packages: ERT Silver Protection Package and ERT Gold Protection Package. ERT Silver Protection Package consolidates ERT Security Update Subscription, ERT Active Attackers Feed, and Location-based Mitigation. ERT Gold Protection Package includes ERT under Attack Service on top of the ERT Silver Package. Alteon Global Elastic License (GEL): Alteon GEL is a purchasing and deployment subscription that enables a high level of flexibility for ADC services across datacenters, private and public clouds. GEL enables dynamic ADC capacity allocation and the ability to move that capacity across environments, without having to invest separately in a dedicated ADC infrastructure for each and every location where organization’s applications are deployed (e.g. on premise, public cloud etc.). This application delivery licensing model helps to eliminate planning risks in the purchase and deployment of ADC services, enabling continuous investment protection of the ADC infrastructure throughout its lifecycle duration. APSolute Vision: APSolute Vision is the network management tool and network monitoring tool for the Radware family of cyber security and application delivery solutions. It provides the company’s customers immediate visibility to health, real-time status, performance and security of the company’s products from one central, unified console (even if the customer has multiple data centers). A vision analytics module provides an intuitive, customizable GUI with granular forensic insights into application performance, denial-of-service and web application attacks. MSSP Portal: The Managed Security Service Provider (MSSP) Portal is a turnkey, multi-tenant DDoS detection and mitigation service portal. The Portal collects and aggregates security attack measurement and events (including traffic utilization, attack distribution and alerts) and displays them in real-time and historical reports. The company’s MSSP Portal enables service providers to resell cyber security mitigation services to their customers as a managed service. Location-based Mitigation: The company’s location-based mitigation solution is a subscription offering that enables network traffic filtering by countries and regions based on the geolocation mapping of IP subnets. The subscription also supports per-policy block and allow lists, making it a beneficial solution for carriers and service providers that wish to protect multitenant networks. The subscription helps organizations comply with global and industry regulation requirements, such as the Office of Foreign Assets Control and others. This subscription is available for DefensePro and Alteon ADC. Customer Services The company offers technical support, professional services, managed services and training and certification to the company’s customers. The company’s key customer services consist of the following: Certainty Support Program: The company offers technical support for all its products through its Certainty Support Program. Certainty support levels include: Basic: This level provides business day access, including weekends from 9 a.m. to 5 p.m. (local time) to technical support center services, and technical documentation, either via the Web, e-mail or direct phone support during working days. New software releases are available for units covered under the certainty support program. Standard: This level increases access to the technical support center 24/7/365 and adds next business day replacement of failed hardware and waives customer shipping costs. Advanced: This level increases the certainty support level standard to four hours' replacement of failed hardware advanced replacement. Professional Services: The company’s professional services group is staffed by a global team of experts possessing extensive knowledge and experience in security and application delivery both in data centers and the cloud. The group offers a full range of services to design, implement, automate and optimize the company’s customer solutions. The company offers the following key professional services: Design and Planning: This service plans and designs applications for future growth with Radware engineers. The service starts with a review of business goals, network optimization assessment and an overview of application architecture and security requirements to help create a comprehensive deployment plan that is tailored to organizational IT requirements. Application and Security Optimization Services: This service analyzes and reviews the current implementation and design and provides recommendations to help optimize the system and achieve business goals. Resident Engineer: The company’s Resident Engineer service is a proactive on-site engineer who performs operations, design and automation activities. From initial deployment to ongoing management and day-to-day operation, the company’s Resident Engineer service decreases the time demands on the company’s customers’ staff, allowing them to focus on their core business. Technical Account Manager: The company’s technical account manager (TAM) is a proactive consultant that implements best practices, provides guidance and optimizes networking and application resources. ERT Service: The company’s Emergency Response Team (ERT) is a group of security experts available 24x7 for proactive security support services for customers facing an array of application- and network-layer attacks. These services include: ERT Managed Security Service: The company’s ERT offers a fully managed application- and network-security service. The service covers a broad range of attack types from different forms of DDoS to a variety of application attacks against the company’s customers’ servers or data centers. It includes immediate response, onboarding, consulting, remote management and reporting. ERT Under-Attack Service: The ERT under-attack service offers 24x7 access to a security expert within 10 minutes. The ERT engineer will take the lead, fight off attacks and provide postmortem analysis of security events. The ERT under-attack service lets organizations know there is someone to rely on, guaranteeing support throughout the attack life cycle from the moment it begins. The ERT experts are available 24x7 and assist large enterprises worldwide with complex multi-vector attacks against their networks, data centers and application services. Recent Solution Offering Activities During 2022, the company announced a strategic initiative that focuses on cloud and application security. This initiative consists of the following: In response to the ever-increasing volume of attacks and strong business demand, the company has continued to expand the company’s Cloud Security Services network: The company has acquired the assets and operation of SecurityDAM, the company’s DDoS scrubbing centers provider, including its scrubbing centers infrastructure, India innovation center, cloud services division and technology, operations, and headcount. The company has expanded its Cloud Security Service capacity to mitigate DDoS attacks of up to 12Tbps. The company has announced the opening of additional Cloud Security centers in Milan, Italy, Dubai, UAE, Taipei, Taiwan and Santiago, Chile. The company has continued its investment to extend the company’s Application Security services portfolio to enhance protection against emerging attacks and adapt the company’s solutions to multi-cloud and hybrid-cloud environments: The company has introduced SecurePath, a new cloud-based application security architecture for the company’s Cloud Application Protection Services. The SecurePath architecture helps organizations protect applications deployed in multi- and hybrid-cloud environments. Built with a dual deployment model that departs from traditional industry paradigms, SecurePath addresses the need for security that delivers full application visibility and centralized security management regardless of where applications are deployed. The company extended its cloud application security offering, adding fully automated API Discovery capabilities. These capabilities, combined with newly automated security policy optimization, are part of the company’s integrated Cloud Application Protection Services, which includes WAF, Bot Management, API security, and DDoS protection. The company has added an automated security policy refinement capability to the company’s Cloud Application Protection Services. A primary challenge of application protection is keeping pace with application development and new threats while maintaining accurate security policies with minimal false-positives. The automated policy refinement capability continuously reviews log files in predefined intervals, identifies anomalies with a high level of accuracy and automatically suggests policy refinements for the ERT team to examine and prioritize, and for customers to review and approve. The result is a more accurate, tighter protection with fewer false positives. The company has added to its cloud security services (Cloud DDoS protection and Cloud Application Protection Services) protection against Application DDoS flood attacks. HTTP and HTTPS attacks have become prevalent, and attackers use sophisticated dynamic techniques to bypass standard detection methods. The new capability detects and mitigates a variety of application attacks, including HTTP DDoS Tsunamis, HTTP bombs, low-and-slow assaults, Brute Force attacks, as well as new, unknown and zero-day attacks. The company has enhanced its Bot Manager with a new set of crypto mitigation algorithms. Based on blockchain methodologies, the algorithms help close security gaps that let sophisticated bots evade traditional CAPTCHA solutions to harm a website or application. At the same time, they enable genuine website visitors to enjoy a CAPTCHA-free user experience. The company has added to its Cloud DDoS Protection service a new module of Cloud Network Analytics. The Network Analytics service provides users with detailed, granular insight into network traffic, network services in use, and much more. The Network Analytics service allows administrators to eliminate errors when planning network deployments and stay ahead of DDoS threats via early detection of network abuse and intrusion. The company has announced a new terabit DDoS mitigation platform, DefensePro 800. The new evolution in the company’s DefensePro product series offers Tier-1 service providers and large enterprises the complete set of protection capabilities and performance needed to meet new network requirements related to 5G, edge computing, and network virtualization, as well as the significant increase in bandwidth demand. DefensePro 800 is equipped with 400G interfaces and delivers an attack prevention rate up to 1.2 billion packets per second (PPS) and a mitigation capacity up to 800 gigabits per second (Gbps). The company has announced the spinoff of its Cloud Native Protector (CNP) business to form SkyHawk Security. With this spinoff, the company is creating a company focused solely on the CNP market. This will enable the company to add more R&D, sales, and marketing personnel to cover the market opportunity faster and in a more dedicated fashion. Forming a new company allows the company to invest more in the business while at the same time not to limit Radware’s investments in the company’s critical areas of Application Protection, DDoS Protection and Application Delivery. This spinoff does not change the company’s sales go-to-market strategy and approach. Radware will continue to sell CNP as part of the company’s portfolio, and the company’s support and services for existing customers will remain the same. The company continued to add capabilities to its Alteon ADC including: ADC automation in private cloud environment: To enable simplified management of application delivery services, the company has integrated Alteon with orchestration systems, such as VMware, vRealize Orchestrator and OpenStack, as well as automation tools, such as Ansible and REST API. This allows IT administrators and DevOps teams to automate all ADC solution lifecycle tasks, including spinning up Alteon VA instances (Day 0), L2-L3 instance configuration (Day 1), application delivery service deployment (Day 2) and maintenance (Day 3). Alteon integration with the company’s Cloud WAF solution: As part of the company’s SecurePath architecture, customers can protect on-premise applications through the company’s Cloud WAF, without the hassle of diverting traffic, sharing SSL keys or adding latency, while providing application protection consistency in multi- and hybrid-cloud environments. Recent Technology Partnerships Activities During 2022, the company’s key activities regarding its offerings through technology partners and solution providers consisted of the following: The company continued its investment in the OEM agreement with Israeli-based Check Point Software Technologies Ltd. (Check Point) by adding API protection to the Check Point offering. Check Point offers their customers a full suite of managed cloud security- as-a-service, including WAF, API protection, Bot Manager and DDoS Protection. The company announced its entry into a multi-year agreement to expand the company’s partnership with Presidio, Inc. (Presidio), a global digital services and solutions provider that accelerates business transformation through security technology modernization. To protect its customers’ on-premise, cloud, and hybrid environments, Presidio is adding Radware’s Cloud Application Protection Services and DDoS protection solutions, and Cloud Native Protector to its cyber security suite. Growth Strategy The company’s growth strategy is based on several key elements: focusing on cloud and application security; invest in data center solutions; increase the company’s market footprint; expand the company’s footprint in the medium sized enterprise market; and pursue acquisitions and investments. Sales and Marketing Sales: The company markets and sells its products and services primarily through indirect sales channels that consist of distributors and resellers located in North, Central and South America, Europe, Africa, Asia and Australia. In addition, the company generates direct sales to selected customers mainly in the United States. The company’s direct sales channels are supported by its sales and marketing managers who are also responsible for recruiting potential distributors and resellers and for initiating and managing marketing projects in their assigned regions. The sales managers are supported by the company’s internal sales support staff that help generate and qualify leads for the sales managers. The company has subsidiaries and representative offices and branches in multiple countries to cover the above mentioned regions, to promote and market the company’s products and services and provide customer support in their respective regions. Marketing: The company seeks to build upon its marketing and branding efforts globally to achieve greater worldwide sales and leverage sophisticated digital platforms and activity to scale the company’s presence globally. The company’s marketing initiatives are principally directed at developing brand awareness, optimizing the company’s digital presence, searchability and awareness, generating qualified leads and providing sales and marketing tools to the company’s distributors/resellers to promote sales. The company participates in major trade shows and virtual events, regionally based events/seminars and offer support to the company’s distributors and resellers who participate in these events. The company also participates in the company’s partners’ events, such as Cisco Live and Checkpoint Experience, to promote the company’s solutions within their audiences. Additionally, the company focuses on its customer base to deliver an integrated Customer 360 experience, including regular communications, facilitating support and training needs, maximizing customer lifetime value and developing customer advocacy. The company also invests in online and search engine advertising campaigns, public relations and regionalized field marketing campaigns. In addition to the company’s independent marketing efforts, the company invests in joint marketing efforts with its distributors, OEMs, VARs, GSIs and other companies that have formed strategic alliances with the company. Customers and End-Users With the exception of the company’s limited direct sales to selected customers, the company sells its products and services through distributors or resellers who then sell the company’s products and services to end-users. The company has a globally diversified end-user base, consisting of corporate enterprises, including banks, insurance companies, manufacturing, retail companies, media companies, government agencies and utilities, and service providers, such as telecommunication carriers, internet service providers, cloud service providers and application service providers. Customers in these different vertical markets deploy Radware products for availability, performance and security of their applications. In 2022, approximately 42% of the company’s revenues were in the North, Central and South America (principally in the United States); 36% were in Europe, the Middle East and Africa (EMEA); and 22% in the Asia-Pacific. Seasonality The company’s quarterly operating results have been, and are likely to continue to be, influenced by seasonal fluctuations in the company’s sales and by seasonal purchasing patterns of some of the company’s customers. The company’s operating results in the fourth quarter (year ended December 2022) tend to be higher than other quarters as some of the company’s customers tend to make greater capital and operational expenditures, as well as expenditures relating to service renewals towards the end of their own fiscal years, thereby increasing orders for the company’s products, support and subscription services in the fourth quarter. Customer Support Services The company’s technical support team, which consisted of 364 employees worldwide as of December 31, 2022, supports the company’s sales force during the sales process, assists the company’s customers, resellers and distributors with the initial installation, set-up and ongoing support of the company’s products, and trains them on how to best use the company’s solutions. The technical support team also assists with service onboarding processes and provides training to end-users of the company’s services. In addition, the company’s technical team trains and certifies the company’s distributors and resellers to provide limited technical support in each of the geographical areas in which the company’s products are sold and is directly responsible for remote support. The company’s Certainty Support Program offerings allow customers to automatically obtain new software versions of their products and obtain optimized performance by purchasing any of the following optional offerings: extended warranty, software updates, 24x7 help-desk (directly to the company’s customers and through the company’s distributors), on-site support and unit replacement. Some of the company’s on-site services are provided by third-party contractors. Research and Development The company’s research and development expenses, net, were $86.6 million in 2022. Manufacturing and Suppliers All the company’s products are Underwriters Laboratories (UL) and ISO 9001:2008 compliant and some of them have also achieved industry certifications. Proprietary Rights The company has registered trademarks for, among others, Radware, Radware Logo:, OnDemand Switch, Alteon, APSolute, LinkProof, DefensePro, CID, SIPDirector, AppDirector, AppXcel, AppXML, AppWall, APSolute Insite, StringMatch Engine, Web Server Director, APSolute Vision, vDirect, Alteon VA, AppShape, FastView, DefenseFlow, Virtual DefensePro; VADI (Virtual Application Delivery Infrastructure), ShieldSquare and the ShieldSquare Logo: , and the company has non-registered trademarks for, among others, ADC-VX, Inflight, CyberStack and SecurePath. The company owns registered U.S. copyrights in all of the company’s primary software product lines. The company has registered patents in the United States, Canada and other jurisdictions for, among others, the company’s triangle redirection method used for the global load balancing in the company’s AppDirector product; the company’s mechanism for efficient management and optimization of multiple links used in the company’s LinkProof product; the company’s method for load balancing by global proximity used in the company’s AppDirector product; the company’s method for controlling traffic on links between autonomous Border Gateway Protocol (BGP) systems; the stateful distribution of copied SSL traffic; the transparent inspection of encrypted client traffic; the activation of multiple virtual services on a switching platform; the behavioral analysis and detection of zero-day and DDoS network attack patterns; a new method based on Quantiles for network edge DDoS and network anomalies protection in the company’s DefensePro product; the company’s new paraphrase-based algorithm for hypertext transfer protocol (HTTP) and keyless HTTPS attack mitigation behavioral mechanisms in the company’s DefensePro; the company’s domain name service floods behavioral protection; the company’s web and API application protection, including the company’s Bot Manager augmented by the new block-chain based methods for addressing automated threats (for public-facing services) and advanced threats (for private or authenticated services); new AI/ML methods to address and automate analysis of the company’s CWAF customer’s applications for proactive false-positive and false-negative service tuning, a geographically based traffic distribution; a generic proximity based site selection for global load balancing; an internal hardware connectivity plane architecture; a specific proximity based site selection for global load balancing of HTTP transactions implemented in the company’s Alteon products; and additional patents in the software-defined networking (SDN) field, around a new concept of cyber control and automation for the company’s DefenseFlow product. The company has pending patent applications and provisional patents in connection with several methods and features used in the company’s products or that the company plans to implement in the future. Government Regulations The company is in compliance with the RoHs and WEEE regulations, ISO 14001 standards (regrading Environmental Management Systems), ISO/IEC 27001:2013 and ISO 27032: 2012 standards (both in regard to Information Security Management System), ISO 28000 (Supply Chain Security management) and OHSAS 18001:2007 (Occupational Health and Safety Management). The company works with its suppliers to maintain compliance with various environmental laws and guidelines, such as RoHS and WEEE in the EU. Competition The company’s principal competitors are: DDoS Mitigation: Akamai Technologies, Inc., or Akamai; Imperva Inc., or Imperva; Netscout Systems, Inc.; and Cloudflare, Inc. Web Application Firewalls and Bot Management: Akamai; Imperva; Cloudflare, Inc.; F5 Networks, Inc., or F5; and AWS. Application Delivery: F5; A10 Networks, Inc.; and Citrix Systems, Inc. History Radware Ltd. was founded in 1996.