The Expanding Role of Service Providers in DDoS Mitigation 

The Expanding Role of Service Providers in DDoS Mitigation 

  • March 2015 •
  • 10 pages •
  • Report ID: 2789812 •
  • Format: PDF
This SPIE examines the role, capabilities, and advantages of service providers in the DDoS mitigation process, as well as how this role might develop in the future.

Introduction

Cyber security awareness is at all-time highs in the wake of record-breaking data breaches, cyber espionage, cyber warfare, and sophisticated threats. While threats to data confidentiality and network integrity remain a top-of-mind concern, businesses are reminded daily of the importance of protecting availability as well.

Distributed denial-of-service (DDoS) is a type of attack that leverages the massive stolen computing power provided by infected endpoints to flood targets with traffic. The goal of a DDoS attack is to disrupt the online operations of a target organization by consuming available network bandwidth or server resources. Attack success is determined by the lack of available computing resources for legitimate end users.

Businesses that rely heavily on an Internet presence, such as e-commerce, online gaming, and financial services, are the most common targets. The attacker profile is expanding rapidly as nationstates, criminal organizations, and hacker activist groups are utilizing or commissioning others to launch DDoS attacks against selected targets. Cyber criminals develop, maintain, and rent out a botnet (the network of infected computers controlled remotely by hackers) to mount DDoS attacks against selected targets, for as little as $ an hour, according to Verizon’s 2014 Data Breach Investigations Report.

In 2014, DDoS attacks reached record levels both in terms of scale and frequency. The largest single reported DDoS attack targeted CloudFlare, and reached a peak of Gbps. According to Arbor Networks research, the largest attacks (over Gbps) were reported four times as often in 2014 as compared to 2013. Furthermore, Neustar found that “nearly twice as many companies ( %) reported being attacked in 2013.”
DDoS mitigation is a problem not only for enterprise networks but also for service providers that enable their Internet access. DDoS attacks can degrade or cause loss of service, and increase bandwidth consumption in the network. Service providers also play an important factor in the DDoS mitigation process. This SPIE examines the role, capabilities, and advantages of service providers in the DDoS mitigation process, as well as how this role might develop in the future.