Milan Petrásek1st June 2013DDoSDistributed Denial ofService
• What is DDoS• Types of DDoS attacks• Example of attack• How to protect• SummaryOverview
What is a DDoS Attack?During a Distributed Denial of Service (DDoS)attack, compromised hosts (so called bots) comingfrom distributed sources overwhelm the target withillegitimate traffic so that the servers can not respond tolegitimate clients.targetbots
DDoS typesModern DDoS attacks are complex:1. Volumetric and Flood DDoS Attacks2. State-Exhausting DDoS Attacks3. Application-Layer DDoS Attacks
How to protect against DDoS• It is not easy to try to do it yourself (DIY) –this is very complex area.• Better way is cooperate with internet serviceprovider (ISP) or specialized securitycompany.• Firewall is not a solution.• You need specialized solution for protectionagainst DDoS attack.
• Internet isnt safe.• Creating attacks is a business.• DDoS is big issue on present internet.• Unfortunately Czech Republic isnt exception -March (2013) - we were witnesses large DDoSattack against banks, telcos, media houses etc.• It is good to be prepared – will be worseSummary
• Wikipediahttp://en.wikipedia.org/wiki/SYN_floodhttp://en.wikipedia.org/wiki/Denial-of-service_attack• CSIRT– Recapitulation of march attackshttp://csirt.cz/files/csirt/Rekapitulace-utoky-20120311.pdfSources