Amplification DDoS Attacks: Emerging Threats and Defense Strategies - Availability, Reliability, and Security in Information Systems Access content directly
Conference Papers Year : 2014

Amplification DDoS Attacks: Emerging Threats and Defense Strategies


There are too many servers on the Internet that have already been used, or that are vulnerable and can potentially be used to launch DDoS attacks. Even though awareness increases and organizations begin to lock down those systems, there are plenty of other protocols that can be exploited to be used instead of them. One example is the Simple Network Management Protocol (SNMP), which is a common UDP protocol used for network management. Several types of network devices actually come with SNMP ”on” by default. A request sent to an SNMP server returns a response that is larger than the query that came in.The main aim of this paper is to investigate on the increasing prevalence and destructive power of amplification-based distributed denial of service (DDoS) attacks in order to present a solution based on a profiling methodology. The paper encompass three aspects: amplification DDoS attacks and main port used, the profiling methodology as a mean of identifying the threat and shape it. Finally, a proposal solution is given by considering both strategic and technical aspects.
Fichier principal
Vignette du fichier
978-3-319-10975-6_24_Chapter.pdf (808.06 Ko) Télécharger le fichier
Origin : Files produced by the author(s)

Dates and versions

hal-01404010 , version 1 (28-11-2016)





Antonio Colella, Clara Maria Colombini. Amplification DDoS Attacks: Emerging Threats and Defense Strategies. International Cross-Domain Conference and Workshop on Availability, Reliability, and Security (CD-ARES), Sep 2014, Fribourg, Switzerland. pp.298-310, ⟨10.1007/978-3-319-10975-6_24⟩. ⟨hal-01404010⟩
116 View
423 Download



Gmail Facebook X LinkedIn More