Preventing Denial of Service Attacks
DoS attacks
- Network disrupted by a flood of messages that prevents messages from normal users
- Flooding web servers, email servers so server cannot respond
Distributed DoS (DDoS) come from many different computers
- DDoS agents on several machines are controlled by a DDoS handler, may issue instructions to computers to send simultaneous messages to a target computer
Difficult to prevent DoS and DDoS attacks
- Setup many servers around the world
- Use Intrusion Detection Systems
- Require ISPs to verify that all incoming messages have valid IP addresses