DDoS 3.0 - How Terrorists Bring Down the Internet
Dependable operation of the Internet is of crucial importance for our society. In recent years Distributed Denial of Service (DDoS) attacks have quickly become a major problem for the Internet. Most of these attacks are initiated by kids that target schools, ISPs, banks and web-shops; the Dutch NREN (SURFNet), for example, sees around 10 of such attacks per day. Performing attacks is extremely simple, since many websites offer “DDoS as a Service”; in fact it is easier to order a DDoS attack than to book a hotel! The websites that offer such DDoS attacks are called “Booters” or “Stressers”, and are able to perform attacks with a strength of many Gbps. Although current attempts to mitigate attacks seem promising, analysis of recent attacks learns that it is quite easy to build next generation attack tools that are able to generate DDoS attacks with a strength thousand to one million times higher than the ones we see today. If such tools are used by nation-states or, more likely, terrorists, it should be possible to completely stop the Internet. This paper argues that we should prepare for such novel attacks.
This research is funded by FLAMINGO, a Network of Excellence project (318488) supported by the European Commission under its Seventh Framework Programme.
- 1.Chromik, J.J., Santanna, J.J., Sperotto, A., Pras, A.: Booter websites characterization: towards a list of threats. In: Brazilian Symposium on Computer Networks and Distributed Systems (SBRC) (2015)Google Scholar
- 2.Santanna, J.J., van Rijswijk-Deij, R., Sperotto, A., Hofstede, R., Wierbosch, M., Granville, L.Z., Pras, A.: Booters - an analysis of DDoS-as-a-service attacks. In: IFIP/IEEE International Symposium on Integrated Network Management (IM) (2015)Google Scholar
- 3.Website: Open Resolver Project (2016). http://openresolverproject.org
- 4.v. Rijswijk-Deij, R., Sperotto, A., Pras, A.: DNSSsec and its potential for DDoS attacks. In: Proceedings of the Fourteenth ACM Internet Measurement Conference 2014, pp. 449–460 (2014)Google Scholar
- 5.Website: Open NTP Project (2016). http://openntpproject.org
- 6.Website: Open SNMP Project (2016). http://opensnmpproject.org
- 7.Website: Internet Census 2012 - the Carna Botnet (2012). http://internetcensus2012.bitbucket.org
- 8.HP: Internet of things research study. Technical report, HP (2015)Google Scholar