Skip to Main content Skip to Navigation
Conference papers

Amplification DDoS Attacks: Emerging Threats and Defense Strategies

Abstract : There are too many servers on the Internet that have already been used, or that are vulnerable and can potentially be used to launch DDoS attacks. Even though awareness increases and organizations begin to lock down those systems, there are plenty of other protocols that can be exploited to be used instead of them. One example is the Simple Network Management Protocol (SNMP), which is a common UDP protocol used for network management. Several types of network devices actually come with SNMP ”on” by default. A request sent to an SNMP server returns a response that is larger than the query that came in.The main aim of this paper is to investigate on the increasing prevalence and destructive power of amplification-based distributed denial of service (DDoS) attacks in order to present a solution based on a profiling methodology. The paper encompass three aspects: amplification DDoS attacks and main port used, the profiling methodology as a mean of identifying the threat and shape it. Finally, a proposal solution is given by considering both strategic and technical aspects.
Complete list of metadata

Cited literature [17 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Monday, November 28, 2016 - 11:29:08 AM
Last modification on : Thursday, March 5, 2020 - 4:47:12 PM
Long-term archiving on: : Tuesday, March 21, 2017 - 4:06:01 AM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Antonio Colella, Clara Maria Colombini. Amplification DDoS Attacks: Emerging Threats and Defense Strategies. International Cross-Domain Conference and Workshop on Availability, Reliability, and Security (CD-ARES), Sep 2014, Fribourg, Switzerland. pp.298-310, ⟨10.1007/978-3-319-10975-6_24⟩. ⟨hal-01404010⟩



Record views


Files downloads