Page 48 - cdm-2014
P. 48
HTTP Slow Read: Attackers force servers to send a large amount of data, however it forced to
be sent in many small fragments and read at a very slow rate by the receiver
Slowloris: Using HTTP GET, attackers launch multiple partial and time-delayed HTTP refer
headers to keep the connections open as long as needed to deplete resources
HTTPS: Similar to HTTP attacks, these attack SSL services on servers
SMTP: Attacks targeted at SMTP mail server services
VoIP: Attacks targeted at SIP INVITE services
DDoS Attacks are on the Rise
DDoS attacks are on the rise for almost any organization, large or small. The potential threats
and volumes are increasing as more devices including mobile handsets join the Internet. If you
have a Web property, the likelihood of getting attacked has never been higher.
The evolving nature of DDoS attack technologies requires organizations to make shifts that
need greater foresight and more proactive defenses for network and application-level services.
ISP DDoS protections aren’t enough against the latest attacks requiring an additional level of
DDoS security in your data center to defend against layer 7 threats. There are many different
types of DDoS defense solutions on the market today. You should choose one that can defend
against basic attack types and advanced layer 7 DDoS threats.
A hardware-based DDoS appliance can be a predictable cost-effective solution that provides full
layer 3, 4 and 7 DDoS protection for your data center. Some models offer advanced features
like line rating for congestion prevention, and 100% behavior-based detection that eliminate the
need for signature updates.
Whether you have a DDoS mitigation solution or not, you need to understand what DDoS
attacks can do to your data center. The only way to validate your defenses is to conduct
comprehensive and regular DDoS testing. For most enterprise and ISP data center managers,
this requires a complete hardware-based testing solution.
About the author:
Mark Byers
Director of Product Marketing, Fortinet, Inc.
Mark manages product marketing for Fortinet’s application
delivery, web application firewall and DDoS attack mitigation
products. Prior to joining Fortinet in 2013, he worked at Coyote
Point Systems where he led marketing for the company and its
application delivery controller appliances.
! " $ !
! # ! "
