| Publisher | CIAC: U.S. Department of Energy (DOE) | ||
|---|---|---|---|
| Format | PDF, requires Acrobat Rdr 5 | Date added | 14 Feb 2000 |
| Topics | Denial of Service, Security Tools | ||
| Downloads | 3240  popular | ||
One type of attack on computer systems is known as a Denial of Service (DoS) attack. A
Denial of Service attack is designed to prevent legitimate users from using a system.
Traditional Denial of Service attacks are done by exploiting a buffer overflow,
exhausting system resources, or exploiting a system bug that results in a system that is no
longer functional. In the summer of 1999, a new breed of attack has been developed
called Distributed Denial of Service (DDoS) attack. Several educational and high
capacity commercial sites have been affected by these Distributed Denial of Service
attacks. A Distributed Denial of Service attack uses multiple machines operating in
concert to attack a network or site. There is very little that can be done if you are the
target of a DDoS. The nature of these attacks cause so much extra network traffic that it
is difficult for legitimate traffic to reach your site while blocking the forged attacking
packets. The intent of this paper is to help sites not be involved in a DDoS attack.
The first tools developed to perpetrate the DDoS attack were Trin00 and Tribe Flood
Network (TFN). They spawned the next generation of tools called Tribe Flood Network
2000 (TFN2K) and Stacheldraht (German for Barb Wire). These Distributed Denial of
Service attack tools are designed to bring one or more sites down by flooding the victim
with large amounts of network traffic originating at multiple locations and remotely
controlled by a single client.
This paper discusses how these DDoS tools work, how to detect them, and specific
technical information on each individual tool. It is written with the system administrator
in mind. It assumes that the reader has basic knowledge of the TCP/IP Protocol.
Did you find this white paper useful?
23 out of 50 users found this white paper useful
Related white papers
Enabling business growth with expert security solutions. Protecting your systems and your data
Hackers, viruses, worms, spams, spy ware and inside attacks can stop organisations growing. This white paper deals with these vunerabilities and how to achieve cost effective soultions.
Understanding Web application security challenges
Business has grown increasingly independent upon web applications and they are becoming more difficult to secure. This paper explains what you can do to protect your organization and improve Web...
Why Your Standard IPS Leaves You Open to DDoS Attacks
Off late Distributed Denial of Service (DDoS) attacks are specifically designed to leverage the weaknesses of a standard Intrusion Prevention System (IPS), which is not able to defend against a...
Pushing Security to the Perimeter: Trusted Computing Technology Adapts to Changing Enterprise Needs
Security concerns, identity theft and regulatory compliance requirements are converging to drive the enterprise's need for strong identity and access management (IAM) solutions. These solutions can include enterprise single sign-on...
The dirty dozen: preventing common application-level hack attacks
As organizations have grown increasingly dependent on online software, the risk of malicious attacks has also become far more serious. Such attacks can bring a business to a standstill, cost...
DDoS Defense Mechanism by Applying Stamps
In current trend, internet plays a vital role in the life and distributed computing structure grows dramatically in size, functionality and complexity and has become the integral part of the...
Using NetFlow Auditor to Assist in Identifying Distributed Denial-of-Service (DDoS) Attacks and Other Network Behavior Anomalies
This Paper covers how Denial of Service Attacks (DoS) and Distributed Denial of Service Attacks (DDos) can be identified early to mitigate and attack. The paper will reflect a method...
