Table of Contents
Practical Approaches to Dealing with DDoS Attacks
AGENDA
WHY IS DDoS A DIFFICULT PROBLEM?
GOAL #1: IDENTIFY DDoS TRAFFIC
HISTORICAL AGGREGATE TRAFFIC ANALYSIS
HOW CAN HISTORY BE USEFUL?
EXAMPLE: FILTERING BY SOURCE ADDRESS
DETECTING RANDOM SPOOFING
EXAMPLE: FILTERING BY TTL
EXAMPLE: FILTERING BY PACKET LENGTH
GOAL #2: DISTRIBUTED DEFENSE
DISTRIBUTED MONITORING
EXAMPLE SCENARIO
EXAMPLE SCENARIO
WHY THIS DESIGN?
ISSUES WITH CURRENT PROPOSALS
DISTRIBUTED MONITORING CHALLENGES
CURRENT STATUS
CONCLUSION
|