SlideShare a Scribd company logo

What can possibly go wrong? Why eSport needs an AntiDDoS Protection

J
Jakub Słociński

The document discusses the growing issue of DDoS (Distributed Denial of Service) attacks affecting online esports. It notes that DDoS attacks aim to overload servers and make online services unavailable, which can disrupt important esports tournaments. While some basic prevention steps can help individual players, large esports events often require working with security specialists and dedicated anti-DDoS protection services to mitigate attacks. Proper anti-DDoS solutions need to filter malicious traffic while minimizing latency and reliably supporting the high-bandwidth and low-latency needs of competitive online gaming. Without adequate protection, DDoS attacks can negatively impact player experiences and hurt the esports industry.

Internet
1 of 30
What can possibly go wrong? Why eSport needs an Anti-DDoS Protection Justyna Czybier Jakub Słociński
eSport? You are joking, right? Short from electronic sport. A multiplayer video game played competitively for spectators, typically by professional gamers [en.oxforddictionaries.com] or the umbrella term for organised, competitive computer gaming, usually between professionals [http://www.bbc.co.uk/guides/zygq2hv]. The majority of eSports titles are fighting games, first-person shooters (FPS), real-time strategy(RTS), or multiplayer online battle arena games (MOBA), with the MOBA genre being the most popular in terms of participation and viewership
FPS, MOBA, RTS? What does it even mean? Fighting games FPS games Source: [https://upload.wikimedia.org/wikipedia/en/e/e9/Street_Fighter_Logo.png];[https://graph.digiseller.ru/img.ashx?idc=277&w=200];[http://esportlivescore.com/img/games/- 10_65/overwatch.png];[http://i.imgur.com/7OPuh.png];[https://quake.bethesda.net/assets/images/quake-icon-4897721917.png];[https://eu.battle.net/forums/static/images/game-logos/game-logo-sc2.png];[https://bnetproduct- a.akamaihd.net//dg/255/77B245C5E1B3F106F2A660108C8F9A607F06E5C0.png];[http://mmrdota.com/images/Dota2.png];[https://signup.eune.leagueoflegends.com/theme/signup_new_theme/dist/img/logo-lol-smaller.png];[https://web2.hirez.com/smite//wp- content/uploads/2015/05/smite-logo.png];[https://cdn-tempostorm.netdna-ssl.com/img/hots/hots-logo.png?a67007a95c017d3d];[https://2welcome.staticwars.com/img/pff/splash-logo.ddb0a7dc.png];[http://www.bestcheats.pl/wp-content/uploads/2015/12/world-of- tanks-logo.png];[http://www.strefammo.pl/wp- content/uploads/2015/10/b8ba1cfcf1ef6147038e364d45a5c672e0e6f332.png];[http://mugenfreeforall.com/applications/core/interface/imageproxy/imageproxy.php?img=https%3A%2F%2Fi.imgur.com%2FIu0Rg76.png&key=249413bc66e40581d4d623ae71720ca60b 7bdd0fa0d7117315cc5677ff82d3dd];[http://mugenfreeforall.com/applications/core/interface/imageproxy/imageproxy.php?img=https%3A%2F%2Fi.imgur.com%2FIu0Rg76.png&key=249413bc66e40581d4d623ae71720ca60b7bdd0fa0d7117315cc5677ff82d3dd]; RTS games MOBA games Other games
Let’s dig in history, shall we? First tournaments was held in 1972 in the University of Stanford (Intergalactic Spacewar Olympics) and in 1980 by Atari - Space Invaders Tournament 1990 - 2000: eSport focused on first person shooters, sports games, and arcade-style games till the release of the real-time strategy (RTS) hit „StarCraft: Brood War” 2000 - now: exponential growth of eSport. Two major international tournaments were launched in 2000 (World Cyber Games and the Electronic Sports World Cup) Source: [https://www.reddit.com/r/gaming/comments/3aa15a/ataris_national_space_invaders_championship_held/];[http://adanai.com/esports/];[
Online gaming now Top 3 most watched games on Twitch in march [https://newzoo.com/insights/rankings/top-games-twitch/]: 1. League of Legends 2. Counter Strike: Global Offensive 3. DOTA2 Top 3 most lucrative games [https://www.esportsearnings.com/games] : 1. DOTA 2 Number of recorded tournaments (since 2011): 735 Prize money awarded (since 2011): $99,291,136.92 2. League of Legends Number of recorded tournaments (since 2010): 1861 Prize money awarded (since 2010): $39,522,139.21 3. Counter Strike: GO Number of recorded tournaments (since 2000): 2290 Prize money awarded (since 2000): $32,294,249.23 http://knowyourmeme.com/memes/shut-up-and-take-my-money
„Według raportu sporządzonego pod koniec ubiegłego roku przez serwis XY Gain łączna suma nagród we wszystkich turniejach pięciu największych gier e-sportowych wyniosła ok. 193 miliony dolarów. Obok pieniędzy gwarantowanych przez twórców gier oraz sponsorów zawodów i poszczególnych drużyn, branżę zasilają również fundusze z reklam podczas transmisji na żywo. Rekordowy pod tym względem zeszłoroczny wielki finał mistrzostw świata Leauge of Legends przyciągnął 43 miliony unikalnych widzów. Tyle co ostatnie minuty finałowego meczu NBA.” Michał „enki” Kuszewski, CD-Action Celebrities Zone ;)
Source: [newzoo 2017 GLOBAL ESPORTS MARKET REPORT (free), page 19]
People talk about it According to SuperData raport „more people watch GVC (gaming video content) than HBO, Netflix, ESPN and Hulu combined.” Source: [https://twitter.com/TwitterMktg/status/859182117611335685]; [https://www.superdataresearch.com/market-data/gaming-video-content/ ]
What doesn’t kill you is gonna give you lag Biggest issues in online gaming? According to Jeff Kesselman answer is users :) Source: [https://www.quora.com/What-are-the-biggest-problems-affecting-developers-of-online-games-e-g-MMOs]
Top 5 IT challenges to focus on Speed-to-market Availability Latency Scalability Infrastructure costs Source: [http://www.internap.com/2013/02/05/top-five-online-gaming-it-infrastructure-challenges/]
DDoS? Distributed Denial of Service (DDoS) attacks overload a server with a huge volume of malformed requests – to make an online service unavailable. Basic types of attacks: TCP Connection attacks Volumetric attack Protocol attack Application attacks
Competitors Hacker groups Script Kiddie If you can’t get online - you can't play
Source: [akamai’s [state of the internet] / security Q2 2016 report, page 18
Source: [https://www.akamai.com/us/en/multimedia/documents/brochure/eedar-akamai-gaming-infrastructure-and-consumer-sentiment-ebook.pdf, page 19]
Source: [https://www.akamai.com/us/en/multimedia/documents/brochure/eedar-akamai-gaming-infrastructure-and-consumer-sentiment-ebook.pdf, page 24]
Just buy it... Source: [https://securelist.com/analysis/publications/77784/the-cost-of-launching-a-ddos-attack/]
Celebrities Zone ;) [part 2] „Ataki typu DDoS są jednym z najbardziej szkodliwych zagrożeń dla całej branży e-sportu. Obecnie w zasadzie nie organizuje się turniejów na wysokim szczeblu bez współpracy ze specjalistami w dziedzinie ochrony sieci. W 2015 roku atak przeprowadzony podczas mistrzostw świata Doty 2 o puli 18 milionów dolarów zmusił organizatorów do dokonania kosztownych przerw i opóźnień w transmisji. Na niższym szczeblu ataki wielokrotnie wpływały na wyniki meczów kwalifikacyjnych rozgrywanych przez internet - wystarczy wyłączyć na kilkanaście minut z rozgrywki pojedynczego zawodnika pięcioosobowej dużyny, by móc zastosować regulaminowy przepis o poddaniu umówionego meczu z uwagi na brak pełnego składu jednej z ekip” Michał „enki” Kuszewski, CD-Action
Ok, so what CAN I do? Riot games created simple prevention sheet: Make sure it’s DDoS Protect your IP Beware of Skype Collect and analyse your NetLogs: From file Using Wireshark app Incapsula.com advise more steps: Use VPN Keep your home network up to date Source: [https://www.incapsula.com/blog/protecting-gamers-from-dos-ddos-attacks.html];[https://support.riotgames.com/hc/en-us/articles/201751764-DDoS-Prevention-Guide]
Some tips Set UDP protocols limits (e.g. configure Iptables Firewall) Change ports to other than defaults Keep your kernel up-to date (you can also try to tune it’s settings e.g. sysctl.conf) Think about using redundant services Find trusted provider with Anti-DDoS service
What is killing online eSports ? image: venturebeat.com / Riot Games
Network key values • Low latency „Online gaming customers are twice as likely to abandon a game when they experience a network delay of 500 additional milliseconds.” [cedexis.com] • Reliability Almost every game needs online connection for distribution, multiplayer, transactions or authorization • Bandwidth (yes, we also need it ☺) • Security Do not allow bad things on your infra
Networking protocols • TCP provides reliable, ordered and error-checked delivery of a stream of bytes oriented in connections Features like: buffering, retransmission (RTT), flow control (sliding window) …but do we really care about data lost few seconds in the past?? • UDP is fast ☺ Features like: no ordering, no delivery checks, connectionless, no flow control • TCP + UDP? check this out: https://www.isoc.org/INET97/proceedings/F3/F3_1.HTM • Modified TCP over UDP? [UDP_HEADER, proto_id, seq, ack, …]
Tracking the infra • Underestimated security (bro, it’s not banking, isn’t it?) • Various custom protocols over TCP and UDP • Attack the infrastructure vs. attack the application • You don’t need to bring down the gaming infra • 5min DDoS from 125Gbps capable botnet for $5 (incl. some bypassing options) • DDoS offers to kill various AntiDDoS solutions • Wait, you really said UDP? ☺ image: gta5-mods.com
UDP reflection + amplification image: http://blogs.it.ox.ac.uk
Beeing the target or shooting? • Quake 3 gaming protocol allows to get bandwidth amplification factor of 63x to 82x (depends on connected clients) – server info messages (!) • Steam protocol (e.g.: Half-Life, Counter-Strike or Team-Fortress) allows to get amplification factor of 5,5x to almost 15x Source: [„Amplification Hell: Revisiting Network Protocols for DDoS Abuse” Christian Rossow VU University Amsterdam, The Netherlands Horst G¨ortz Institute for IT-Security, Ruhr University Bochum, Germany]
The shield • First line of protection – TCP mitigation (used for webapps as well) • Smart protection for UDP – custom engine protocols (reverse engineering?) • Statefull inspection – protection is not about blackholing traffic per IP (really?) • Always-ON – turning on and off while under attack may add latency jitter • Minimal latency added – protection must be close to the infra • Distributed
Example AntiDDoS protection
Summary • DDoS will most likely disturb latency, bandwidth and reliability of your gaming infra. All key factors at once. • Then your players will get 404 or LAG => …and churn => you loose  • Protection is a must have (or protection + secops team for bigger eSport events) • Allways-ON AntiDDoS systems that smartly filters the bad traffic out while keeping the proper one • Distributed protection system for Distributed Denial of Service attacks will do the job even better
Q/A? Thanks! Justyna Czybier ( /id/PanZdzichu ) Jakub Słociński ( @KubaAtOvh )

Recommended

イマドキなNetwork/IO
イマドキなNetwork/IOイマドキなNetwork/IO
イマドキなNetwork/IO
Takuya ASADA
 
Строим ханипот и выявляем DDoS-атаки
Строим ханипот и выявляем DDoS-атакиСтроим ханипот и выявляем DDoS-атаки
Строим ханипот и выявляем DDoS-атаки
Positive Hack Days
 
Инциденты с использованием ransomware. Расследование
Инциденты с использованием ransomware. РасследованиеИнциденты с использованием ransomware. Расследование
Инциденты с использованием ransomware. Расследование
Positive Hack Days
 
L3HA-VRRP-20141201
L3HA-VRRP-20141201L3HA-VRRP-20141201
L3HA-VRRP-20141201
Manabu Ori
 
Linux network stack
Linux network stackLinux network stack
Linux network stack
Takuya ASADA
 
Francisco Jesús Gómez + Carlos Juan Diaz - Cloud Malware Distribution: DNS wi...
Francisco Jesús Gómez + Carlos Juan Diaz - Cloud Malware Distribution: DNS wi...Francisco Jesús Gómez + Carlos Juan Diaz - Cloud Malware Distribution: DNS wi...
Francisco Jesús Gómez + Carlos Juan Diaz - Cloud Malware Distribution: DNS wi...
RootedCON
 
How to send DNS over anything encrypted
How to send DNS over anything encryptedHow to send DNS over anything encrypted
How to send DNS over anything encrypted
Men and Mice
 
OpenStack networking
OpenStack networkingOpenStack networking
OpenStack networking
Sim Janghoon
 

Recommended

イマドキなNetwork/IO
イマドキなNetwork/IOイマドキなNetwork/IO
イマドキなNetwork/IO
Takuya ASADA
 
Строим ханипот и выявляем DDoS-атаки
Строим ханипот и выявляем DDoS-атакиСтроим ханипот и выявляем DDoS-атаки
Строим ханипот и выявляем DDoS-атаки
Positive Hack Days
 
Инциденты с использованием ransomware. Расследование
Инциденты с использованием ransomware. РасследованиеИнциденты с использованием ransomware. Расследование
Инциденты с использованием ransomware. Расследование
Positive Hack Days
 
L3HA-VRRP-20141201
L3HA-VRRP-20141201L3HA-VRRP-20141201
L3HA-VRRP-20141201
Manabu Ori
 
Linux network stack
Linux network stackLinux network stack
Linux network stack
Takuya ASADA
 
Francisco Jesús Gómez + Carlos Juan Diaz - Cloud Malware Distribution: DNS wi...
Francisco Jesús Gómez + Carlos Juan Diaz - Cloud Malware Distribution: DNS wi...Francisco Jesús Gómez + Carlos Juan Diaz - Cloud Malware Distribution: DNS wi...
Francisco Jesús Gómez + Carlos Juan Diaz - Cloud Malware Distribution: DNS wi...
RootedCON
 
How to send DNS over anything encrypted
How to send DNS over anything encryptedHow to send DNS over anything encrypted
How to send DNS over anything encrypted
Men and Mice
 
OpenStack networking
OpenStack networkingOpenStack networking
OpenStack networking
Sim Janghoon
 
Хакеры хотят ваш банк больше, чем ваших клиентов
Хакеры хотят ваш банк больше, чем ваших клиентовХакеры хотят ваш банк больше, чем ваших клиентов
Хакеры хотят ваш банк больше, чем ваших клиентов
Positive Hack Days
 
MIPS-X
MIPS-XMIPS-X
MIPS-X
Zoltan Balazs
 
DoS and DDoS mitigations with eBPF, XDP and DPDK
DoS and DDoS mitigations with eBPF, XDP and DPDKDoS and DDoS mitigations with eBPF, XDP and DPDK
DoS and DDoS mitigations with eBPF, XDP and DPDK
Marian Marinov
 
Trying and evaluating the new features of GlusterFS 3.5
Trying and evaluating the new features of GlusterFS 3.5Trying and evaluating the new features of GlusterFS 3.5
Trying and evaluating the new features of GlusterFS 3.5
Keisuke Takahashi
 
Gluster Cloud Night in Tokyo 2013 -- Tips for getting started
Gluster Cloud Night in Tokyo 2013 -- Tips for getting startedGluster Cloud Night in Tokyo 2013 -- Tips for getting started
Gluster Cloud Night in Tokyo 2013 -- Tips for getting started
Keisuke Takahashi
 
Carlos García - Pentesting Active Directory [rooted2018]
Carlos García - Pentesting Active Directory [rooted2018]Carlos García - Pentesting Active Directory [rooted2018]
Carlos García - Pentesting Active Directory [rooted2018]
RootedCON
 
The <$100 Cyber Sensor, You Can Build It!
The <$100 Cyber Sensor, You Can Build It!The <$100 Cyber Sensor, You Can Build It!
The <$100 Cyber Sensor, You Can Build It!
Ludwig Goon
 
Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...
Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...
Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...
Shakacon
 
Abusing Microsoft Kerberos - Sorry you guys don’t get it
Abusing Microsoft Kerberos - Sorry you guys don’t get itAbusing Microsoft Kerberos - Sorry you guys don’t get it
Abusing Microsoft Kerberos - Sorry you guys don’t get it
E Hacking
 
Project1
Project1Project1
Project1
Surya Bheri
 
OpenStack networking juno l3 h-a, dvr
OpenStack networking juno l3 h-a, dvrOpenStack networking juno l3 h-a, dvr
OpenStack networking juno l3 h-a, dvr
Sim Janghoon
 
Kubernetes networking - basics
Kubernetes networking - basicsKubernetes networking - basics
Kubernetes networking - basics
Juraj Hantak
 
Openv switchの使い方とか
Openv switchの使い方とかOpenv switchの使い方とか
Openv switchの使い方とか
kotto_hihihi
 
Debugging linux issues with eBPF
Debugging linux issues with eBPFDebugging linux issues with eBPF
Debugging linux issues with eBPF
Ivan Babrou
 
Passive Fingerprinting of HTTP/2 Clients by Ory Segal
Passive Fingerprinting of HTTP/2 Clients by Ory SegalPassive Fingerprinting of HTTP/2 Clients by Ory Segal
Passive Fingerprinting of HTTP/2 Clients by Ory Segal
CODE BLUE
 
Ha opensuse
Ha opensuseHa opensuse
Ha opensuse
Kenny (netman)
 
Troubleshooting Tips from a Docker Support Engineer
Troubleshooting Tips from a Docker Support EngineerTroubleshooting Tips from a Docker Support Engineer
Troubleshooting Tips from a Docker Support Engineer
Jeff Anderson
 
Defeating The Network Security Infrastructure V1.0
Defeating The Network Security Infrastructure V1.0Defeating The Network Security Infrastructure V1.0
Defeating The Network Security Infrastructure V1.0
Philippe Bogaerts
 
Snort-IPS-Tutorial
Snort-IPS-TutorialSnort-IPS-Tutorial
Snort-IPS-Tutorial
Vladimir Koychev
 
Virtualized network with openvswitch
Virtualized network with openvswitchVirtualized network with openvswitch
Virtualized network with openvswitch
Sim Janghoon
 
Crytek CSIRT CERT-EE Symposium 2016
Crytek CSIRT CERT-EE Symposium 2016Crytek CSIRT CERT-EE Symposium 2016
Crytek CSIRT CERT-EE Symposium 2016
CrytekCSIRT
 
DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...
DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...
DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...
Felipe Prado
 

More Related Content

What's hot

Хакеры хотят ваш банк больше, чем ваших клиентов
Хакеры хотят ваш банк больше, чем ваших клиентовХакеры хотят ваш банк больше, чем ваших клиентов
Хакеры хотят ваш банк больше, чем ваших клиентов
Positive Hack Days
 
MIPS-X
MIPS-XMIPS-X
MIPS-X
Zoltan Balazs
 
DoS and DDoS mitigations with eBPF, XDP and DPDK
DoS and DDoS mitigations with eBPF, XDP and DPDKDoS and DDoS mitigations with eBPF, XDP and DPDK
DoS and DDoS mitigations with eBPF, XDP and DPDK
Marian Marinov
 
Trying and evaluating the new features of GlusterFS 3.5
Trying and evaluating the new features of GlusterFS 3.5Trying and evaluating the new features of GlusterFS 3.5
Trying and evaluating the new features of GlusterFS 3.5
Keisuke Takahashi
 
Gluster Cloud Night in Tokyo 2013 -- Tips for getting started
Gluster Cloud Night in Tokyo 2013 -- Tips for getting startedGluster Cloud Night in Tokyo 2013 -- Tips for getting started
Gluster Cloud Night in Tokyo 2013 -- Tips for getting started
Keisuke Takahashi
 
Carlos García - Pentesting Active Directory [rooted2018]
Carlos García - Pentesting Active Directory [rooted2018]Carlos García - Pentesting Active Directory [rooted2018]
Carlos García - Pentesting Active Directory [rooted2018]
RootedCON
 
The <$100 Cyber Sensor, You Can Build It!
The <$100 Cyber Sensor, You Can Build It!The <$100 Cyber Sensor, You Can Build It!
The <$100 Cyber Sensor, You Can Build It!
Ludwig Goon
 
Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...
Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...
Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...
Shakacon
 
Abusing Microsoft Kerberos - Sorry you guys don’t get it
Abusing Microsoft Kerberos - Sorry you guys don’t get itAbusing Microsoft Kerberos - Sorry you guys don’t get it
Abusing Microsoft Kerberos - Sorry you guys don’t get it
E Hacking
 
Project1
Project1Project1
Project1
Surya Bheri
 
OpenStack networking juno l3 h-a, dvr
OpenStack networking juno l3 h-a, dvrOpenStack networking juno l3 h-a, dvr
OpenStack networking juno l3 h-a, dvr
Sim Janghoon
 
Kubernetes networking - basics
Kubernetes networking - basicsKubernetes networking - basics
Kubernetes networking - basics
Juraj Hantak
 
Openv switchの使い方とか
Openv switchの使い方とかOpenv switchの使い方とか
Openv switchの使い方とか
kotto_hihihi
 
Debugging linux issues with eBPF
Debugging linux issues with eBPFDebugging linux issues with eBPF
Debugging linux issues with eBPF
Ivan Babrou
 
Passive Fingerprinting of HTTP/2 Clients by Ory Segal
Passive Fingerprinting of HTTP/2 Clients by Ory SegalPassive Fingerprinting of HTTP/2 Clients by Ory Segal
Passive Fingerprinting of HTTP/2 Clients by Ory Segal
CODE BLUE
 
Ha opensuse
Ha opensuseHa opensuse
Ha opensuse
Kenny (netman)
 
Troubleshooting Tips from a Docker Support Engineer
Troubleshooting Tips from a Docker Support EngineerTroubleshooting Tips from a Docker Support Engineer
Troubleshooting Tips from a Docker Support Engineer
Jeff Anderson
 
Defeating The Network Security Infrastructure V1.0
Defeating The Network Security Infrastructure V1.0Defeating The Network Security Infrastructure V1.0
Defeating The Network Security Infrastructure V1.0
Philippe Bogaerts
 
Snort-IPS-Tutorial
Snort-IPS-TutorialSnort-IPS-Tutorial
Snort-IPS-Tutorial
Vladimir Koychev
 
Virtualized network with openvswitch
Virtualized network with openvswitchVirtualized network with openvswitch
Virtualized network with openvswitch
Sim Janghoon
 

What's hot (20)

Хакеры хотят ваш банк больше, чем ваших клиентов
Хакеры хотят ваш банк больше, чем ваших клиентовХакеры хотят ваш банк больше, чем ваших клиентов
Хакеры хотят ваш банк больше, чем ваших клиентов
 
MIPS-X
MIPS-XMIPS-X
MIPS-X
 
DoS and DDoS mitigations with eBPF, XDP and DPDK
DoS and DDoS mitigations with eBPF, XDP and DPDKDoS and DDoS mitigations with eBPF, XDP and DPDK
DoS and DDoS mitigations with eBPF, XDP and DPDK
 
Trying and evaluating the new features of GlusterFS 3.5
Trying and evaluating the new features of GlusterFS 3.5Trying and evaluating the new features of GlusterFS 3.5
Trying and evaluating the new features of GlusterFS 3.5
 
Gluster Cloud Night in Tokyo 2013 -- Tips for getting started
Gluster Cloud Night in Tokyo 2013 -- Tips for getting startedGluster Cloud Night in Tokyo 2013 -- Tips for getting started
Gluster Cloud Night in Tokyo 2013 -- Tips for getting started
 
Carlos García - Pentesting Active Directory [rooted2018]
Carlos García - Pentesting Active Directory [rooted2018]Carlos García - Pentesting Active Directory [rooted2018]
Carlos García - Pentesting Active Directory [rooted2018]
 
The <$100 Cyber Sensor, You Can Build It!
The <$100 Cyber Sensor, You Can Build It!The <$100 Cyber Sensor, You Can Build It!
The <$100 Cyber Sensor, You Can Build It!
 
Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...
Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...
Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...
 
Abusing Microsoft Kerberos - Sorry you guys don’t get it
Abusing Microsoft Kerberos - Sorry you guys don’t get itAbusing Microsoft Kerberos - Sorry you guys don’t get it
Abusing Microsoft Kerberos - Sorry you guys don’t get it
 
Project1
Project1Project1
Project1
 
OpenStack networking juno l3 h-a, dvr
OpenStack networking juno l3 h-a, dvrOpenStack networking juno l3 h-a, dvr
OpenStack networking juno l3 h-a, dvr
 
Kubernetes networking - basics
Kubernetes networking - basicsKubernetes networking - basics
Kubernetes networking - basics
 
Openv switchの使い方とか
Openv switchの使い方とかOpenv switchの使い方とか
Openv switchの使い方とか
 
Debugging linux issues with eBPF
Debugging linux issues with eBPFDebugging linux issues with eBPF
Debugging linux issues with eBPF
 
Passive Fingerprinting of HTTP/2 Clients by Ory Segal
Passive Fingerprinting of HTTP/2 Clients by Ory SegalPassive Fingerprinting of HTTP/2 Clients by Ory Segal
Passive Fingerprinting of HTTP/2 Clients by Ory Segal
 
Ha opensuse
Ha opensuseHa opensuse
Ha opensuse
 
Troubleshooting Tips from a Docker Support Engineer
Troubleshooting Tips from a Docker Support EngineerTroubleshooting Tips from a Docker Support Engineer
Troubleshooting Tips from a Docker Support Engineer
 
Defeating The Network Security Infrastructure V1.0
Defeating The Network Security Infrastructure V1.0Defeating The Network Security Infrastructure V1.0
Defeating The Network Security Infrastructure V1.0
 
Snort-IPS-Tutorial
Snort-IPS-TutorialSnort-IPS-Tutorial
Snort-IPS-Tutorial
 
Virtualized network with openvswitch
Virtualized network with openvswitchVirtualized network with openvswitch
Virtualized network with openvswitch
 

Similar to What can possibly go wrong? Why eSport needs an AntiDDoS Protection

Crytek CSIRT CERT-EE Symposium 2016
Crytek CSIRT CERT-EE Symposium 2016Crytek CSIRT CERT-EE Symposium 2016
Crytek CSIRT CERT-EE Symposium 2016
CrytekCSIRT
 
DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...
DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...
DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...
Felipe Prado
 
Online games: a real-time problem for the network
Online games: a real-time problem for the networkOnline games: a real-time problem for the network
Online games: a real-time problem for the network
Jose Saldana
 
Kauli SSPにおけるVyOSの導入事例
Kauli SSPにおけるVyOSの導入事例Kauli SSPにおけるVyOSの導入事例
Kauli SSPにおけるVyOSの導入事例
Kazuhito Ohkawa
 
OpenNebulaConf2019 - Crytek: A Video gaming Edge Implementation "on the shoul...
OpenNebulaConf2019 - Crytek: A Video gaming Edge Implementation "on the shoul...OpenNebulaConf2019 - Crytek: A Video gaming Edge Implementation "on the shoul...
OpenNebulaConf2019 - Crytek: A Video gaming Edge Implementation "on the shoul...
OpenNebula Project
 
OpenNebulaConf 2019 - Crytek: A Video gaming Edge Implementation "on the shou...
OpenNebulaConf 2019 - Crytek: A Video gaming Edge Implementation "on the shou...OpenNebulaConf 2019 - Crytek: A Video gaming Edge Implementation "on the shou...
OpenNebulaConf 2019 - Crytek: A Video gaming Edge Implementation "on the shou...
Dmytro Korzhevin
 
Video Game Industry Trends
Video Game Industry TrendsVideo Game Industry Trends
Video Game Industry Trends
Alex Ferrara
 
Harlan beverly gaming levels up networking ieee 10 2009
Harlan beverly gaming levels up networking ieee 10 2009Harlan beverly gaming levels up networking ieee 10 2009
Harlan beverly gaming levels up networking ieee 10 2009
Harlan Beverly
 
支撐英雄聯盟戰績網的那條巨蟒
支撐英雄聯盟戰績網的那條巨蟒支撐英雄聯盟戰績網的那條巨蟒
支撐英雄聯盟戰績網的那條巨蟒
Toki Kanno
 
Introduction to BlackBerry 10 NDK for Game Developers.
Introduction to BlackBerry 10 NDK for Game Developers.Introduction to BlackBerry 10 NDK for Game Developers.
Introduction to BlackBerry 10 NDK for Game Developers.
ardiri
 
Level-up your gaming telemetry using Kafka Streams | DevNation Tech Talk
Level-up your gaming telemetry using Kafka Streams | DevNation Tech TalkLevel-up your gaming telemetry using Kafka Streams | DevNation Tech Talk
Level-up your gaming telemetry using Kafka Streams | DevNation Tech Talk
Red Hat Developers
 
Dedicated Game Servers
Dedicated Game ServersDedicated Game Servers
Dedicated Game Servers
webhostingguy
 
EuroBSDCon 2013 - Mitigating DDoS Attacks at Layer 7
EuroBSDCon 2013 - Mitigating DDoS Attacks at Layer 7EuroBSDCon 2013 - Mitigating DDoS Attacks at Layer 7
EuroBSDCon 2013 - Mitigating DDoS Attacks at Layer 7
allanjude
 
Akshay-UNIT 20-LO-1,2,3&4-FINAL
Akshay-UNIT 20-LO-1,2,3&4-FINALAkshay-UNIT 20-LO-1,2,3&4-FINAL
Akshay-UNIT 20-LO-1,2,3&4-FINAL
Akshay
 
Video Card (chs)
Video Card (chs)Video Card (chs)
Video Card (chs)
jake napoles
 
Behind story in publisher that developer doesn't know
Behind story in publisher that developer doesn't knowBehind story in publisher that developer doesn't know
Behind story in publisher that developer doesn't know
David Kim
 
Developing for consoles as an indie in 2019
Developing for consoles as an indie in 2019Developing for consoles as an indie in 2019
Developing for consoles as an indie in 2019
David Voyles
 
Developing games for consoles as an indie in 2019
Developing games for consoles as an indie in 2019Developing games for consoles as an indie in 2019
Developing games for consoles as an indie in 2019
David Voyles
 
Deploying a Low-Latency Multiplayer Game Globally: Loadout
Deploying a Low-Latency Multiplayer Game Globally: Loadout Deploying a Low-Latency Multiplayer Game Globally: Loadout
Deploying a Low-Latency Multiplayer Game Globally: Loadout
Amazon Web Services
 
How to prevent cyber terrorism taragana
How to prevent cyber terrorism taraganaHow to prevent cyber terrorism taragana
How to prevent cyber terrorism taragana
Gilles Sgro
 

Similar to What can possibly go wrong? Why eSport needs an AntiDDoS Protection (20)

Crytek CSIRT CERT-EE Symposium 2016
Crytek CSIRT CERT-EE Symposium 2016Crytek CSIRT CERT-EE Symposium 2016
Crytek CSIRT CERT-EE Symposium 2016
 
DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...
DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...
DEF CON 27 - HUBER AND ROSKOSCH - im on your phone listening attacking voip c...
 
Online games: a real-time problem for the network
Online games: a real-time problem for the networkOnline games: a real-time problem for the network
Online games: a real-time problem for the network
 
Kauli SSPにおけるVyOSの導入事例
Kauli SSPにおけるVyOSの導入事例Kauli SSPにおけるVyOSの導入事例
Kauli SSPにおけるVyOSの導入事例
 
OpenNebulaConf2019 - Crytek: A Video gaming Edge Implementation "on the shoul...
OpenNebulaConf2019 - Crytek: A Video gaming Edge Implementation "on the shoul...OpenNebulaConf2019 - Crytek: A Video gaming Edge Implementation "on the shoul...
OpenNebulaConf2019 - Crytek: A Video gaming Edge Implementation "on the shoul...
 
OpenNebulaConf 2019 - Crytek: A Video gaming Edge Implementation "on the shou...
OpenNebulaConf 2019 - Crytek: A Video gaming Edge Implementation "on the shou...OpenNebulaConf 2019 - Crytek: A Video gaming Edge Implementation "on the shou...
OpenNebulaConf 2019 - Crytek: A Video gaming Edge Implementation "on the shou...
 
Video Game Industry Trends
Video Game Industry TrendsVideo Game Industry Trends
Video Game Industry Trends
 
Harlan beverly gaming levels up networking ieee 10 2009
Harlan beverly gaming levels up networking ieee 10 2009Harlan beverly gaming levels up networking ieee 10 2009
Harlan beverly gaming levels up networking ieee 10 2009
 
支撐英雄聯盟戰績網的那條巨蟒
支撐英雄聯盟戰績網的那條巨蟒支撐英雄聯盟戰績網的那條巨蟒
支撐英雄聯盟戰績網的那條巨蟒
 
Introduction to BlackBerry 10 NDK for Game Developers.
Introduction to BlackBerry 10 NDK for Game Developers.Introduction to BlackBerry 10 NDK for Game Developers.
Introduction to BlackBerry 10 NDK for Game Developers.
 
Level-up your gaming telemetry using Kafka Streams | DevNation Tech Talk
Level-up your gaming telemetry using Kafka Streams | DevNation Tech TalkLevel-up your gaming telemetry using Kafka Streams | DevNation Tech Talk
Level-up your gaming telemetry using Kafka Streams | DevNation Tech Talk
 
Dedicated Game Servers
Dedicated Game ServersDedicated Game Servers
Dedicated Game Servers
 
EuroBSDCon 2013 - Mitigating DDoS Attacks at Layer 7
EuroBSDCon 2013 - Mitigating DDoS Attacks at Layer 7EuroBSDCon 2013 - Mitigating DDoS Attacks at Layer 7
EuroBSDCon 2013 - Mitigating DDoS Attacks at Layer 7
 
Akshay-UNIT 20-LO-1,2,3&4-FINAL
Akshay-UNIT 20-LO-1,2,3&4-FINALAkshay-UNIT 20-LO-1,2,3&4-FINAL
Akshay-UNIT 20-LO-1,2,3&4-FINAL
 
Video Card (chs)
Video Card (chs)Video Card (chs)
Video Card (chs)
 
Behind story in publisher that developer doesn't know
Behind story in publisher that developer doesn't knowBehind story in publisher that developer doesn't know
Behind story in publisher that developer doesn't know
 
Developing for consoles as an indie in 2019
Developing for consoles as an indie in 2019Developing for consoles as an indie in 2019
Developing for consoles as an indie in 2019
 
Developing games for consoles as an indie in 2019
Developing games for consoles as an indie in 2019Developing games for consoles as an indie in 2019
Developing games for consoles as an indie in 2019
 
Deploying a Low-Latency Multiplayer Game Globally: Loadout
Deploying a Low-Latency Multiplayer Game Globally: Loadout Deploying a Low-Latency Multiplayer Game Globally: Loadout
Deploying a Low-Latency Multiplayer Game Globally: Loadout
 
How to prevent cyber terrorism taragana
How to prevent cyber terrorism taraganaHow to prevent cyber terrorism taragana
How to prevent cyber terrorism taragana
 

Recently uploaded

怎么办理(umiami毕业证书)美国迈阿密大学毕业证文凭证书实拍图原版一模一样
怎么办理(umiami毕业证书)美国迈阿密大学毕业证文凭证书实拍图原版一模一样怎么办理(umiami毕业证书)美国迈阿密大学毕业证文凭证书实拍图原版一模一样
怎么办理(umiami毕业证书)美国迈阿密大学毕业证文凭证书实拍图原版一模一样
rtunex8r
 
Bengaluru Dreamin' 24 - Personal Branding
Bengaluru Dreamin' 24 - Personal BrandingBengaluru Dreamin' 24 - Personal Branding
Bengaluru Dreamin' 24 - Personal Branding
Tarandeep Singh
 
办理新西兰奥克兰大学毕业证学位证书范本原版一模一样
办理新西兰奥克兰大学毕业证学位证书范本原版一模一样办理新西兰奥克兰大学毕业证学位证书范本原版一模一样
办理新西兰奥克兰大学毕业证学位证书范本原版一模一样
xjq03c34
 
Discover the benefits of outsourcing SEO to India
Discover the benefits of outsourcing SEO to IndiaDiscover the benefits of outsourcing SEO to India
Discover the benefits of outsourcing SEO to India
davidjhones387
 
Securing BGP: Operational Strategies and Best Practices for Network Defenders...
Securing BGP: Operational Strategies and Best Practices for Network Defenders...Securing BGP: Operational Strategies and Best Practices for Network Defenders...
Securing BGP: Operational Strategies and Best Practices for Network Defenders...
APNIC
 
一比一原版新西兰林肯大学毕业证(Lincoln毕业证书)学历如何办理
一比一原版新西兰林肯大学毕业证(Lincoln毕业证书)学历如何办理一比一原版新西兰林肯大学毕业证(Lincoln毕业证书)学历如何办理
一比一原版新西兰林肯大学毕业证(Lincoln毕业证书)学历如何办理
thezot
 
一比一原版(USYD毕业证)悉尼大学毕业证如何办理
一比一原版(USYD毕业证)悉尼大学毕业证如何办理一比一原版(USYD毕业证)悉尼大学毕业证如何办理
一比一原版(USYD毕业证)悉尼大学毕业证如何办理
k4ncd0z
 
Should Repositories Participate in the Fediverse?
Should Repositories Participate in the Fediverse?Should Repositories Participate in the Fediverse?
Should Repositories Participate in the Fediverse?
Paul Walk
 
快速办理(新加坡SMU毕业证书)新加坡管理大学毕业证文凭证书一模一样
快速办理(新加坡SMU毕业证书)新加坡管理大学毕业证文凭证书一模一样快速办理(新加坡SMU毕业证书)新加坡管理大学毕业证文凭证书一模一样
快速办理(新加坡SMU毕业证书)新加坡管理大学毕业证文凭证书一模一样
3a0sd7z3
 
快速办理(Vic毕业证书)惠灵顿维多利亚大学毕业证完成信一模一样
快速办理(Vic毕业证书)惠灵顿维多利亚大学毕业证完成信一模一样快速办理(Vic毕业证书)惠灵顿维多利亚大学毕业证完成信一模一样
快速办理(Vic毕业证书)惠灵顿维多利亚大学毕业证完成信一模一样
3a0sd7z3
 
Honeypots Unveiled: Proactive Defense Tactics for Cyber Security, Phoenix Sum...
Honeypots Unveiled: Proactive Defense Tactics for Cyber Security, Phoenix Sum...Honeypots Unveiled: Proactive Defense Tactics for Cyber Security, Phoenix Sum...
Honeypots Unveiled: Proactive Defense Tactics for Cyber Security, Phoenix Sum...
APNIC
 
HijackLoader Evolution: Interactive Process Hollowing
HijackLoader Evolution: Interactive Process HollowingHijackLoader Evolution: Interactive Process Hollowing
HijackLoader Evolution: Interactive Process Hollowing
Donato Onofri
 

Recently uploaded (12)

怎么办理(umiami毕业证书)美国迈阿密大学毕业证文凭证书实拍图原版一模一样
怎么办理(umiami毕业证书)美国迈阿密大学毕业证文凭证书实拍图原版一模一样怎么办理(umiami毕业证书)美国迈阿密大学毕业证文凭证书实拍图原版一模一样
怎么办理(umiami毕业证书)美国迈阿密大学毕业证文凭证书实拍图原版一模一样
 
Bengaluru Dreamin' 24 - Personal Branding
Bengaluru Dreamin' 24 - Personal BrandingBengaluru Dreamin' 24 - Personal Branding
Bengaluru Dreamin' 24 - Personal Branding
 
办理新西兰奥克兰大学毕业证学位证书范本原版一模一样
办理新西兰奥克兰大学毕业证学位证书范本原版一模一样办理新西兰奥克兰大学毕业证学位证书范本原版一模一样
办理新西兰奥克兰大学毕业证学位证书范本原版一模一样
 
Discover the benefits of outsourcing SEO to India
Discover the benefits of outsourcing SEO to IndiaDiscover the benefits of outsourcing SEO to India
Discover the benefits of outsourcing SEO to India
 
Securing BGP: Operational Strategies and Best Practices for Network Defenders...
Securing BGP: Operational Strategies and Best Practices for Network Defenders...Securing BGP: Operational Strategies and Best Practices for Network Defenders...
Securing BGP: Operational Strategies and Best Practices for Network Defenders...
 
一比一原版新西兰林肯大学毕业证(Lincoln毕业证书)学历如何办理
一比一原版新西兰林肯大学毕业证(Lincoln毕业证书)学历如何办理一比一原版新西兰林肯大学毕业证(Lincoln毕业证书)学历如何办理
一比一原版新西兰林肯大学毕业证(Lincoln毕业证书)学历如何办理
 
一比一原版(USYD毕业证)悉尼大学毕业证如何办理
一比一原版(USYD毕业证)悉尼大学毕业证如何办理一比一原版(USYD毕业证)悉尼大学毕业证如何办理
一比一原版(USYD毕业证)悉尼大学毕业证如何办理
 
Should Repositories Participate in the Fediverse?
Should Repositories Participate in the Fediverse?Should Repositories Participate in the Fediverse?
Should Repositories Participate in the Fediverse?
 
快速办理(新加坡SMU毕业证书)新加坡管理大学毕业证文凭证书一模一样
快速办理(新加坡SMU毕业证书)新加坡管理大学毕业证文凭证书一模一样快速办理(新加坡SMU毕业证书)新加坡管理大学毕业证文凭证书一模一样
快速办理(新加坡SMU毕业证书)新加坡管理大学毕业证文凭证书一模一样
 
快速办理(Vic毕业证书)惠灵顿维多利亚大学毕业证完成信一模一样
快速办理(Vic毕业证书)惠灵顿维多利亚大学毕业证完成信一模一样快速办理(Vic毕业证书)惠灵顿维多利亚大学毕业证完成信一模一样
快速办理(Vic毕业证书)惠灵顿维多利亚大学毕业证完成信一模一样
 
Honeypots Unveiled: Proactive Defense Tactics for Cyber Security, Phoenix Sum...
Honeypots Unveiled: Proactive Defense Tactics for Cyber Security, Phoenix Sum...Honeypots Unveiled: Proactive Defense Tactics for Cyber Security, Phoenix Sum...
Honeypots Unveiled: Proactive Defense Tactics for Cyber Security, Phoenix Sum...
 
HijackLoader Evolution: Interactive Process Hollowing
HijackLoader Evolution: Interactive Process HollowingHijackLoader Evolution: Interactive Process Hollowing
HijackLoader Evolution: Interactive Process Hollowing
 

What can possibly go wrong? Why eSport needs an AntiDDoS Protection

  • 1. What can possibly go wrong? Why eSport needs an Anti-DDoS Protection Justyna Czybier Jakub Słociński
  • 2. eSport? You are joking, right? Short from electronic sport. A multiplayer video game played competitively for spectators, typically by professional gamers [en.oxforddictionaries.com] or the umbrella term for organised, competitive computer gaming, usually between professionals [http://www.bbc.co.uk/guides/zygq2hv]. The majority of eSports titles are fighting games, first-person shooters (FPS), real-time strategy(RTS), or multiplayer online battle arena games (MOBA), with the MOBA genre being the most popular in terms of participation and viewership
  • 3. FPS, MOBA, RTS? What does it even mean? Fighting games FPS games Source: [https://upload.wikimedia.org/wikipedia/en/e/e9/Street_Fighter_Logo.png];[https://graph.digiseller.ru/img.ashx?idc=277&w=200];[http://esportlivescore.com/img/games/- 10_65/overwatch.png];[http://i.imgur.com/7OPuh.png];[https://quake.bethesda.net/assets/images/quake-icon-4897721917.png];[https://eu.battle.net/forums/static/images/game-logos/game-logo-sc2.png];[https://bnetproduct- a.akamaihd.net//dg/255/77B245C5E1B3F106F2A660108C8F9A607F06E5C0.png];[http://mmrdota.com/images/Dota2.png];[https://signup.eune.leagueoflegends.com/theme/signup_new_theme/dist/img/logo-lol-smaller.png];[https://web2.hirez.com/smite//wp- content/uploads/2015/05/smite-logo.png];[https://cdn-tempostorm.netdna-ssl.com/img/hots/hots-logo.png?a67007a95c017d3d];[https://2welcome.staticwars.com/img/pff/splash-logo.ddb0a7dc.png];[http://www.bestcheats.pl/wp-content/uploads/2015/12/world-of- tanks-logo.png];[http://www.strefammo.pl/wp- content/uploads/2015/10/b8ba1cfcf1ef6147038e364d45a5c672e0e6f332.png];[http://mugenfreeforall.com/applications/core/interface/imageproxy/imageproxy.php?img=https%3A%2F%2Fi.imgur.com%2FIu0Rg76.png&key=249413bc66e40581d4d623ae71720ca60b 7bdd0fa0d7117315cc5677ff82d3dd];[http://mugenfreeforall.com/applications/core/interface/imageproxy/imageproxy.php?img=https%3A%2F%2Fi.imgur.com%2FIu0Rg76.png&key=249413bc66e40581d4d623ae71720ca60b7bdd0fa0d7117315cc5677ff82d3dd]; RTS games MOBA games Other games
  • 4. Let’s dig in history, shall we? First tournaments was held in 1972 in the University of Stanford (Intergalactic Spacewar Olympics) and in 1980 by Atari - Space Invaders Tournament 1990 - 2000: eSport focused on first person shooters, sports games, and arcade-style games till the release of the real-time strategy (RTS) hit „StarCraft: Brood War” 2000 - now: exponential growth of eSport. Two major international tournaments were launched in 2000 (World Cyber Games and the Electronic Sports World Cup) Source: [https://www.reddit.com/r/gaming/comments/3aa15a/ataris_national_space_invaders_championship_held/];[http://adanai.com/esports/];[
  • 5. Online gaming now Top 3 most watched games on Twitch in march [https://newzoo.com/insights/rankings/top-games-twitch/]: 1. League of Legends 2. Counter Strike: Global Offensive 3. DOTA2 Top 3 most lucrative games [https://www.esportsearnings.com/games] : 1. DOTA 2 Number of recorded tournaments (since 2011): 735 Prize money awarded (since 2011): $99,291,136.92 2. League of Legends Number of recorded tournaments (since 2010): 1861 Prize money awarded (since 2010): $39,522,139.21 3. Counter Strike: GO Number of recorded tournaments (since 2000): 2290 Prize money awarded (since 2000): $32,294,249.23 http://knowyourmeme.com/memes/shut-up-and-take-my-money
  • 6. „Według raportu sporządzonego pod koniec ubiegłego roku przez serwis XY Gain łączna suma nagród we wszystkich turniejach pięciu największych gier e-sportowych wyniosła ok. 193 miliony dolarów. Obok pieniędzy gwarantowanych przez twórców gier oraz sponsorów zawodów i poszczególnych drużyn, branżę zasilają również fundusze z reklam podczas transmisji na żywo. Rekordowy pod tym względem zeszłoroczny wielki finał mistrzostw świata Leauge of Legends przyciągnął 43 miliony unikalnych widzów. Tyle co ostatnie minuty finałowego meczu NBA.” Michał „enki” Kuszewski, CD-Action Celebrities Zone ;)
  • 7. Source: [newzoo 2017 GLOBAL ESPORTS MARKET REPORT (free), page 19]
  • 8. People talk about it According to SuperData raport „more people watch GVC (gaming video content) than HBO, Netflix, ESPN and Hulu combined.” Source: [https://twitter.com/TwitterMktg/status/859182117611335685]; [https://www.superdataresearch.com/market-data/gaming-video-content/ ]
  • 9. What doesn’t kill you is gonna give you lag Biggest issues in online gaming? According to Jeff Kesselman answer is users :) Source: [https://www.quora.com/What-are-the-biggest-problems-affecting-developers-of-online-games-e-g-MMOs]
  • 10. Top 5 IT challenges to focus on Speed-to-market Availability Latency Scalability Infrastructure costs Source: [http://www.internap.com/2013/02/05/top-five-online-gaming-it-infrastructure-challenges/]
  • 11. DDoS? Distributed Denial of Service (DDoS) attacks overload a server with a huge volume of malformed requests – to make an online service unavailable. Basic types of attacks: TCP Connection attacks Volumetric attack Protocol attack Application attacks
  • 12. Competitors Hacker groups Script Kiddie If you can’t get online - you can't play
  • 13. Source: [akamai’s [state of the internet] / security Q2 2016 report, page 18
  • 16. Just buy it... Source: [https://securelist.com/analysis/publications/77784/the-cost-of-launching-a-ddos-attack/]
  • 17. Celebrities Zone ;) [part 2] „Ataki typu DDoS są jednym z najbardziej szkodliwych zagrożeń dla całej branży e-sportu. Obecnie w zasadzie nie organizuje się turniejów na wysokim szczeblu bez współpracy ze specjalistami w dziedzinie ochrony sieci. W 2015 roku atak przeprowadzony podczas mistrzostw świata Doty 2 o puli 18 milionów dolarów zmusił organizatorów do dokonania kosztownych przerw i opóźnień w transmisji. Na niższym szczeblu ataki wielokrotnie wpływały na wyniki meczów kwalifikacyjnych rozgrywanych przez internet - wystarczy wyłączyć na kilkanaście minut z rozgrywki pojedynczego zawodnika pięcioosobowej dużyny, by móc zastosować regulaminowy przepis o poddaniu umówionego meczu z uwagi na brak pełnego składu jednej z ekip” Michał „enki” Kuszewski, CD-Action
  • 18. Ok, so what CAN I do? Riot games created simple prevention sheet: Make sure it’s DDoS Protect your IP Beware of Skype Collect and analyse your NetLogs: From file Using Wireshark app Incapsula.com advise more steps: Use VPN Keep your home network up to date Source: [https://www.incapsula.com/blog/protecting-gamers-from-dos-ddos-attacks.html];[https://support.riotgames.com/hc/en-us/articles/201751764-DDoS-Prevention-Guide]
  • 19. Some tips Set UDP protocols limits (e.g. configure Iptables Firewall) Change ports to other than defaults Keep your kernel up-to date (you can also try to tune it’s settings e.g. sysctl.conf) Think about using redundant services Find trusted provider with Anti-DDoS service
  • 20. What is killing online eSports ? image: venturebeat.com / Riot Games
  • 21. Network key values • Low latency „Online gaming customers are twice as likely to abandon a game when they experience a network delay of 500 additional milliseconds.” [cedexis.com] • Reliability Almost every game needs online connection for distribution, multiplayer, transactions or authorization • Bandwidth (yes, we also need it ☺) • Security Do not allow bad things on your infra
  • 22. Networking protocols • TCP provides reliable, ordered and error-checked delivery of a stream of bytes oriented in connections Features like: buffering, retransmission (RTT), flow control (sliding window) …but do we really care about data lost few seconds in the past?? • UDP is fast ☺ Features like: no ordering, no delivery checks, connectionless, no flow control • TCP + UDP? check this out: https://www.isoc.org/INET97/proceedings/F3/F3_1.HTM • Modified TCP over UDP? [UDP_HEADER, proto_id, seq, ack, …]
  • 23. Tracking the infra • Underestimated security (bro, it’s not banking, isn’t it?) • Various custom protocols over TCP and UDP • Attack the infrastructure vs. attack the application • You don’t need to bring down the gaming infra • 5min DDoS from 125Gbps capable botnet for $5 (incl. some bypassing options) • DDoS offers to kill various AntiDDoS solutions • Wait, you really said UDP? ☺ image: gta5-mods.com
  • 24. UDP reflection + amplification image: http://blogs.it.ox.ac.uk
  • 25. Beeing the target or shooting? • Quake 3 gaming protocol allows to get bandwidth amplification factor of 63x to 82x (depends on connected clients) – server info messages (!) • Steam protocol (e.g.: Half-Life, Counter-Strike or Team-Fortress) allows to get amplification factor of 5,5x to almost 15x Source: [„Amplification Hell: Revisiting Network Protocols for DDoS Abuse” Christian Rossow VU University Amsterdam, The Netherlands Horst G¨ortz Institute for IT-Security, Ruhr University Bochum, Germany]
  • 26.
  • 27. The shield • First line of protection – TCP mitigation (used for webapps as well) • Smart protection for UDP – custom engine protocols (reverse engineering?) • Statefull inspection – protection is not about blackholing traffic per IP (really?) • Always-ON – turning on and off while under attack may add latency jitter • Minimal latency added – protection must be close to the infra • Distributed
  • 29. Summary • DDoS will most likely disturb latency, bandwidth and reliability of your gaming infra. All key factors at once. • Then your players will get 404 or LAG => …and churn => you loose  • Protection is a must have (or protection + secops team for bigger eSport events) • Allways-ON AntiDDoS systems that smartly filters the bad traffic out while keeping the proper one • Distributed protection system for Distributed Denial of Service attacks will do the job even better
  • 30. Q/A? Thanks! Justyna Czybier ( /id/PanZdzichu ) Jakub Słociński ( @KubaAtOvh )