Français
6. ProNet notifications between DMS and ISP
Activating filters local to each domain is not enough to block an Internet-wide attack. Moreover, given the large number of source machines involved in an attack, a large number of filters are required.
Applying these filters has an impact on router and firewall performance.
To solve this problem in a comprehensive way, DMS services can work with ISPs to block upstream machines injecting attack traffic as soon as possible, so as to limit the propagation of attack traffic. ISPs can then prevent these machines from connecting to the access network(s), by refusing to allocate IP addresses to them.
This solution requires ISPs to expose an API to provide third parties with value-added services such as address filtering.
In concrete terms, a DPA agent determines...
The Ultimate Scientific and Technical Reference
This article is included in
Security of information systems
This offer includes:
Knowledge Base
Updated and enriched with articles validated by our scientific committees
Services
A set of exclusive tools to complement the resources
Practical Path
Operational and didactic, to guarantee the acquisition of transversal skills
Doc & Quiz
Interactive articles with quizzes, for constructive reading
ProNet notifications between DMS and ISP
Outlook
Bibliography
- (1) - BOUCADAIR (M.), Ed, REDDY (T.K.), Ed - Distributed Denial-of-Service Open Threat Signaling (DOTS) Data Channel Specification. - RFC 8783, DOI 10.17487/RFC8783, https://www.rfc-editor.org/info/rfc8783 (2020).
- ...
The Ultimate Scientific and Technical Reference
