Professional Documents
Culture Documents
application
network bandwidth system resources
resources
relates to the capacity of the
network links connecting a typically involves a number
server to the Internet of valid requests, each of
aims to overload or crash the which consumes significant
network handling software resources, thus limiting the
for most organizations this is of a system ability of the server to
their connection to their respond to requests from
Internet Service Provider other users
(ISP)
Classic Denial-of-Service Attacks
UDP flood
• uses UDP packets directed to some port number on the target
system
attacker uses a
large collections of
flaw in operating
such systems
system or in a
use of multiple under the control
common
systems to of one attacker’s
application to gain
generate attacks control can be
access and installs
created, forming a
their program on it
botnet
(zombie)
DDoS Attack Architecture
Reflection Attacks
attack reaction
• after the attack
DoS Attack Prevention
block spoofed source addresses
on routers as close to source as possible