Proactive protection for your application layer

The application layer provides hackers with the widest surface attack that can bring major disruptions if exploited. AT&T application layer security helps defend against malicious attacks to keep your servers and applications running. 

Man working at computer


What AT&T application layer security can achieve for you

  • Proactive monitoring

    Proactive monitoring of all inbound and outbound traffic to provide early warning of potentially malicious activity.

    Laptop icon
  • Quick response

    24x7 monitoring to help quickly identify threats and minimize disruptions.

  • Simplify security operations 

    Fully managed solution utilizing extensive security and business expertise to simplify your security operations.

  • Operational expense

    One convenient monthly charge with no upfront large capital investment.


AT&T application layer security helps provide a clear line of defense

AT&T application layer security

Starting at


AT&T application layer security is a managed security service for premises-based DDoS protection devices that is designed to offer protection from internet-borne threats before they reach the local firewall. This enhances the traditional security method of protecting the network border by enforcing controls at the network endpoints. The solution may be configured so that if a volumetric DDoS attack is detected it could request DDoS defense mitigations in the cloud to mitigate the attack.

Contact us

Features & highlights

Quickly identify and stop threats in its track to minimize damage

Features Details
Local deployment AT&T will assist in the setup of the managed services and premises-based device(s) for AT&T owned devices and perform tuning based on your requirements.
In-line protection

The device can be configured for Inline-Inactive (analyze and detect) or Inline-Active (analyze, detect and mitigate) modes of operation. When in Inline-Active mode, the device may be configured to alert the AT&T DDoS defense service* via cloud signaling for volumetric attack protection.  

*AT&T DDoS defense service subscription required. 

Always-on Provides effective on-premises security for application traffic to help keep critical applications and servers available to the public.
Custom protection setting Avoid potential congestion of the firewall and drop outbound traffic that violates the security policy based on defined protection settings on the managed device.
Ease of management Easily manages routine tasks and provides access to alert and mitigation summaries via self-administration portal. 


Discover how we can help protect your data


AT&T application layer security is security at the application layer, that helps to protect against application layer DDoS attacks. The fully managed service will provide configuration, administration, and troubleshooting of the premises-based device owned by AT&T or within the defined bound of managed service. If the customer owns a qualifying device, software, license and maintenance, standalone management can be provided. 

It is designed to detect malicious traffic, either inbound or outbound, at the customer edge.  It then mitigates attacks by dropping the malicious traffic at the customer’s network edge before exhausting the firewall or reaching the internal network, and it allows the flow of legitimate traffic in and out of the local network. 

Application layer security devices allow for connection to AT&T DDoS defense service via cloud signaling of large attacks to initiate mitigations and scrub malicious packets upstream in the AT&T network.  

Cloud signaling to a DDoS defense service feature is available on AT&T managed Application Edge Defense (AED) devices. To enable the connection, you first need to purchase the cloud-based DDoS defense service and cloud signaling feature and configure the cloud signaling on the premises-based device, either by AT&T if we manage the equipment or by the customer. 

Application layer service may be provided whether or not AT&T is the internet access provider and whether AT&T owns the qualifying premises-based device. 

The device is monitored 24x7 and placed at specific locations in the path of your internet access on your site. A device may monitor and provide protection against application specific DDoS attacks using intelligence feed and third-party Indicators of compromise. 

Our expansive network of experts and broad security solutions enable us to provide unrivaled visibility at every layer, so you can be better prepared against threats today and every day. Customers have the flexibility to address DDoS attacks using a hybrid approach through cloud-based DDoS defense service which can interface with application layer security service for a more robust security posture. 

Request info

To get sales help from a Business Solutions specialist, please complete this form.
RAI Form

Thank you

Thank you for contacting us about AT&T Application Layer Security Service. An AT&T Representative will contact you shortly to provide any additional information and answer any questions.

RAI Form Anchor

Your feedback will help us to improve AT&T Business so you continue to have a great experience when visiting us!

This survey is conducted by an independent company ForeSee for AT&T.

Yes, I’ll give feedback!