Question

In: Computer Science

why is it so difficult to stop DDOS attacks by blocking the attacking IP address

why is it so difficult to stop DDOS attacks by blocking the attacking IP address

Solutions

Expert Solution

why is it so difficult to stop DDOS Attack by blocking the attacking IP address

Sites Don’t Know Where The Attacks Are Coming From

  • It’s not as simple as blocking an IP address. Botnets are often made up of many thousands of infected machines spread out all over the world.
  • Blocking them one at a time is feasible, but blocking every zombie machine without accidentally blocking genuine requests is a hard problem.

Firewalls Aren’t Designed To Handle DDoS Attacks

  • For a firewall to work against a DDoS attack, especially those using protocols like HTTP or DNS that constitute the bulk of genuine use, it has to record IPs and a history of their requests.
  • During a DDoS attack, that can be thousands of constantly changing IPs and millions of packets of data to keep track of in state tables.
  • The memory and processing resources required to do that quickly for every packet is enormous and most firewalls simply can’t handle the load.

The Defense Can’t Be Mounted On The Hosting Provider’s Infrastructure

  • By the time the data gets close to the point of attack, there’s such a flood that it’s practically impossible to do anything other than go offline, which is typically the response of smaller web hosting companies when facing a DDoS attack they close down the site and IP being targeted so that service isn’t degraded for their other clients .
  • Routers, switches, firewalls, and load balancers become overloaded. Very few web hosting providers have the resources and bandwidth to handle that sort of attack.
  • The defense has to be mounted within ISP’s networks and at edge nodes, which is one of the ways that DDoS mitigation services like CloudFlare help.
  • In a nutshell, DDoS attacks are so hard to defend against because the attackers know where the victim is, but the victim doesn’t know where the attackers are. Plus, it’s extremely difficult to tell which packets come from the bad guys and which are legitimate users.

Related Solutions

1. What is a bank run? Why is it so difficult to stop? 2. Describe how...
1. What is a bank run? Why is it so difficult to stop? 2. Describe how the lender of last resort function of a central bank can reduce runs on banks. 3. Describe how a financial panic can lead to a loss of income and employment in sectors of the economy seemingly unrelated to the financial sector.
Why is it difficult for Congress to address the National Debt?
Why is it difficult for Congress to address the National Debt?
Why is institutional discrimination so difficult to eliminate?
Why is institutional discrimination so difficult to eliminate?
Why is it so difficult to change the culture of an organization? Is it worth the...
Why is it so difficult to change the culture of an organization? Is it worth the effort?  Provide an example of a workplace culture you've witnessed a change.
If you have a computer, why would you want an IP address? Why would you want...
If you have a computer, why would you want an IP address? Why would you want a URL? Would you ever want both? Why? Detailed answer please.
Why is the treatment role of a probation/parole officer so difficult?
Why is the treatment role of a probation/parole officer so difficult?
Why is communication important during organizational change and why is it so difficult to communicate with...
Why is communication important during organizational change and why is it so difficult to communicate with followers? How are leadership and HR related to change initiatives? please provide at least one reference.
1.Why is planning and Forecasting a global workforce so difficult? 2.Why are so many countries bothered...
1.Why is planning and Forecasting a global workforce so difficult? 2.Why are so many countries bothered by their “brain drains “? Please respond to questions 1,2 and 3. 1.If you are given the opportunity in your next job to go on an extended foreign assignment, what types of support programs would you expect or ask for? 2.If you ever have the responsibility to select an associate for a foreign assignment, how would you go about doing that and what characteristics...
Why is it so difficult to maintain compliance with privacy and security regulations in healthcare?
Why is it so difficult to maintain compliance with privacy and security regulations in healthcare?
Why is it so difficult to change the healthcare system in the US? (250 words)
Why is it so difficult to change the healthcare system in the US? (250 words)
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT