Presentation is loading. Please wait.

Presentation is loading. Please wait.

Distributed Denial of Service Attacks Dennis Galinsky, Brandon Mikelaitis, Michael Stanley Brandon Williams, Ryan Williams.

Published byAlexandrina McKinney Modified over 8 years ago

Similar presentations

Presentation on theme: "Distributed Denial of Service Attacks Dennis Galinsky, Brandon Mikelaitis, Michael Stanley Brandon Williams, Ryan Williams."— Presentation transcript:

1 Distributed Denial of Service Attacks Dennis Galinsky, Brandon Mikelaitis, Michael Stanley Brandon Williams, Ryan Williams

2 Agenda Types of Attack Source of Attacks Prevention History of Attacks Business Aspect

3 TCP Connection Attack (SYN FLOOD)  Normal Connection  SYN Flood

4  HTTP Get Flood  HTTP Post Flood Application Layer Attack

5 Source of Attack  Botnets What are they? How are they Created? Notable Botnet Army’s ○ Storm ○ Rbot  For-Hire How much does it cost? Rent an Army Threat Level?

6 Prevention  Detect the threat  Mitigate the threat Distinguish good traffic from bad traffic Block bad traffic while still allowing good traffic through.  Protect all points of vulnerability.

7 Prevention Methods  Blackholing  Overprovision  Routers  Firewalls  Intrusion Detection Systems (IDS)  Third Party Protection

8 Blackholing  Blocking all traffic the network as far upstream as possible.  Traffic is diverted to a “black hole” where it is discarded.  Good and bad packets are discarded. Not an efficient solution to a DDoS attack. Attacker’s objective is still fulfilled.

9 Firewalls  Not purpose-built for DDoS attacks, but provide some protection.  Reside too far downstream in the network.  Lack of anomaly detection, can’t recognize when valid protocols are being used in an attack.  Cannot perform antispoofing on a packet by packet basis.

10 Third Party Protection  DNS based redirect service.  Border Gateway Protocol (BGP) based service.  Content Delivery Network (CDN) providers.

11 History of Attacks  Anonymous Hacktivist Group (Civil Disobedience)  Lizard Squad PlayStation 4 Network, Xbox Live, Facebook  GitHub Attack Chinese Government, Replaced JS Code to Force reload pages  Happening Now Digital Attack Map

12

13 Business Aspect Costs for Businesses

14

15

16 DDoS Attacks Lead to:  Software & Hardware Replacements  Reduction in Revenue  Loss of Consumer Trust  Customer Data Theft

17 Questions? Types of Attack Source of Attacks Prevention History of Attacks Business Aspect Demonstration

18 References  https://www.youtube.com/watch?v=BzgsT-_GC4Q https://www.youtube.com/watch?v=BzgsT-_GC4Q  https://www.youtube.com/watch?v=sUrM7_G_y7A https://www.youtube.com/watch?v=sUrM7_G_y7A  http://searchsecurity.techtarget.com/definition/SYN-flooding http://searchsecurity.techtarget.com/definition/SYN-flooding  http://us.norton.com/botnet/ http://us.norton.com/botnet/  http://www.webroot.com/blog/2012/06/06/ddos-for-hire- services-offering-to-take-down-your-competitors-web-sites- going-mainstream/ http://www.webroot.com/blog/2012/06/06/ddos-for-hire- services-offering-to-take-down-your-competitors-web-sites- going-mainstream/  https://www.blacklotus.net/learn/about-ddos-attacks/ https://www.blacklotus.net/learn/about-ddos-attacks/  http://www.slate.com/articles/technology/technology/2010/12/in _defense_of_ddos.html http://www.slate.com/articles/technology/technology/2010/12/in _defense_of_ddos.html  http://www.cbronline.com/news/cybersecurity/cost-of-ddos- attacks-tops-half-a-billion-dollars-4498766 http://www.cbronline.com/news/cybersecurity/cost-of-ddos- attacks-tops-half-a-billion-dollars-4498766  http://databreachinsurancequote.com/cyber-insurance/cyber- insurance-can-serve-as-an-ideal-ddos-attack-response-plan/ http://databreachinsurancequote.com/cyber-insurance/cyber- insurance-can-serve-as-an-ideal-ddos-attack-response-plan/  http://www.kaspersky.com/about/news/business/2015/A-single- DDoS-attack-can-cost-a-company-more-than-400000-dollar http://www.kaspersky.com/about/news/business/2015/A-single- DDoS-attack-can-cost-a-company-more-than-400000-dollar

Download ppt "Distributed Denial of Service Attacks Dennis Galinsky, Brandon Mikelaitis, Michael Stanley Brandon Williams, Ryan Williams."

Similar presentations

On the Necessity of Handling DDoS Traffic in the Middle of the Network Peter Reiher UCLA Computer Communications Workshop October 22, 2008.

On the Necessity of Handling DDoS Traffic in the Middle of the Network Peter Reiher UCLA Computer Communications Workshop October 22, 2008.
REFLEX INTRUSION PREVENTION SYSTEM.. OVERVIEW The Reflex Interceptor appliance is an enterprise- level Network Intrusion Prevention System. It is designed.

REFLEX INTRUSION PREVENTION SYSTEM.. OVERVIEW The Reflex Interceptor appliance is an enterprise- level Network Intrusion Prevention System. It is designed.
Network Vulnerabilities and Attacks Dr. John Abraham UTPA.

Network Vulnerabilities and Attacks Dr. John Abraham UTPA.
Denial of Service Attack History What is a Denial of Service Attack? Modes of Attack Performing a Denial of Service Attack Distributed Denial of Service.

Denial of Service Attack History What is a Denial of Service Attack? Modes of Attack Performing a Denial of Service Attack Distributed Denial of Service.
Availability Dan Fleck CS 469: Security Engineering These slides are modified with permission from Bill Young (Univ of Texas) Coming up: Aspects of Computer.

Availability Dan Fleck CS 469: Security Engineering These slides are modified with permission from Bill Young (Univ of Texas) Coming up: Aspects of Computer.
 Natural consequence of the way Internet is organized o Best effort service means routers don’t do much processing per packet and store no state – they.

 Natural consequence of the way Internet is organized o Best effort service means routers don’t do much processing per packet and store no state – they.
Lecture 9 Page 1 CS 236 Online Denial of Service Attacks that prevent legitimate users from doing their work By flooding the network Or corrupting routing.

Lecture 9 Page 1 CS 236 Online Denial of Service Attacks that prevent legitimate users from doing their work By flooding the network Or corrupting routing.
1 © 2005 Cisco Systems, Inc. All rights reserved. Cisco Public Cisco DoS Detecting and Mitigating DoS Attack in a Network Cisco Systems.

1 © 2005 Cisco Systems, Inc. All rights reserved. Cisco Public Cisco DoS Detecting and Mitigating DoS Attack in a Network Cisco Systems.
Firewalls and Intrusion Detection Systems

Firewalls and Intrusion Detection Systems
Distributed Denial of Service Attacks CMPT 471 1 Distributed Denial of Service Attacks Darius Law.

Distributed Denial of Service Attacks CMPT Distributed Denial of Service Attacks Darius Law.
Common IS Threat Mitigation Strategies An overview of common detection and protection technologies Max Caceres CORE Security Technologies www.coresecurity.com.

Common IS Threat Mitigation Strategies An overview of common detection and protection technologies Max Caceres CORE Security Technologies
Security Awareness: Applying Practical Security in Your World

Security Awareness: Applying Practical Security in Your World
Electronic Commerce 2. Definition Ecommerce is the process of buying and selling products and services via distributed electronic media, usually the World.

Electronic Commerce 2. Definition Ecommerce is the process of buying and selling products and services via distributed electronic media, usually the World.
Flash Crowds And Denial of Service Attacks: Characterization and Implications for CDNs and Web Sites Aaron Beach Cs395 network security.

Flash Crowds And Denial of Service Attacks: Characterization and Implications for CDNs and Web Sites Aaron Beach Cs395 network security.
UNCLASSIFIED Secure Indirect Routing and An Autonomous Enterprise Intrusion Defense System Applied to Mobile ad hoc Networks J. Leland Langston, Raytheon.

UNCLASSIFIED Secure Indirect Routing and An Autonomous Enterprise Intrusion Defense System Applied to Mobile ad hoc Networks J. Leland Langston, Raytheon.
1 Pertemuan 10 Network Security and E-Commerce Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi: >

1 Pertemuan 10 Network Security and E-Commerce Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi: >
Network Attacks. Network Trust Issues – TCP Congestion control – IP Src Spoofing – Wireless transmission Denial of Service Attacks – TCP-SYN – Name Servers.

Network Attacks. Network Trust Issues – TCP Congestion control – IP Src Spoofing – Wireless transmission Denial of Service Attacks – TCP-SYN – Name Servers.
Lecture 15 Denial of Service Attacks

Lecture 15 Denial of Service Attacks
Department Of Computer Engineering

Department Of Computer Engineering
Anomaly Detection and Mitigation. Outline DoS and DDoS Anomaly Detection and Mitigation Systems Cisco DDoS Anomaly Detection and Mitigation Solutions.

Anomaly Detection and Mitigation. Outline DoS and DDoS Anomaly Detection and Mitigation Systems Cisco DDoS Anomaly Detection and Mitigation Solutions.

Similar presentations

Ads by Google