DDOS Protection

Risk of DDOS attack

Distributed Denial of Service (DDoS) attacks have grown worryingly in recent years and are a constant threat to the networks of government agencies and businesses. Many large-scale DDoS attacks have paralyzed the Korean government’s network and disrupted the operation of famous online services networks like Yahoo. DDoS attacks are difficult to effectively defend against due to their enormous size and distributed nature. Many sophisticated DDoS attack techniques and tools have been developed, in which the most effective support for DDoS attacks is the rapid development of malware infection techniques, building networks. Ghost computer (zombies, botnets). Hackers can take control of computers connected to the Internet, control botnet with hundreds of thousands of computers to perform DDoS attack.

In order to effectively prevent DDoS attacks to limit and minimize the damage caused by DDoS attacks, research into attack types and prevention measures is needed. Many studies on DDoS attack classification and prevention measures have been published. In general, DDoS attacks are classified into two types: (1) type of attack that causes loss of network bandwidth and (2) type of attack that drains server resources. The bandwidth depletion attack is further divided into flooding and amplification attacks, while server resource depleting attacks are further divided into protocol failure exploits and attacks using special packets. DDoS attacks are classified into two types based on the network layer, including the attack that floods the network / transport layer and the attack that floods the application layer. In the other direction, the DDoS attack classification is based on 4 criteria: (1) degree of automation, (2) exploitation of security vulnerabilities, (3) intensity of attacks and (4) level of images. enjoy. Despite the differences in methodology and classification criteria, studies all share a common assessment of the severity and worrying growth of DDoS attacks in terms of scope, sophistication, and possibility of destruction. Regarding DDoS attack prevention methods, many studies have the same classification based on two main criteria: (1) deployment location and (2) timing of action.


Anti-DDOS solution introduction

The DDOS anti-attack solution uses the technology to approach DDoS attack according to Stateless level. Different from the traditional approach on Firewall, LB (Load Balancer) devices, or even on Router by Statefull technology. These devices will be limited by the hardware capabilities used to design and manufacture the device.

More specifically, these devices will maintain the system a list of connections that have been established online, in order to better deal with performance when examining and analyzing incoming connections. However, with this approach, it was inadvertently the system’s dead-point when Attackers used their Botnets to dramatically and unexpectedly increase the number of incoming connections, creating overwhelming possibilities. fast. They will intentionally occupy all of this resource of the Table and cause loss of responsiveness of the system of these devices (due to overload). Since then, these boundary systems themselves will not be able to respond to the normal service requests of external users anymore, denial of service will start, service interruption is the inevitable result.

Comprehensive protection solution for both Cloud-Based and On-Premise levels against DDoS and Botnet attacks:

  • Preventing complex DDOS attacks: Anti-DDoS application, based on Botnet network and / or from intentionally draining system resources
  • Enable Cloud Protection Levels with Cloud Signaling: Prevent DDoS Floods by triggering signals for service NCCs or MSSPs
  • Easy to install and immediate protection: Automatically prevent “known” attacks from systems provided by expert vendors.

The importance of DDOS attack prevention solutions for businesses:

DDoS attack, also known as network denial of service attack today has become the biggest challenge in general network security challenges in the enterprise. With the rapid increase in attack complexity, traffic volume and frequency, Enterprise Data Centers are a popular target.

Recognizing the importance of the Network Services that the Enterprise is providing to the Customer, the partner is an uninterrupted part, or in other words, these services must always be available and continuously served. service. At that time, businesses will need an anti-DDoS attack!