A First Joint Look at DoS Attacks and BGP Blackholing in the Wild

Mattijs Jonker, Aiko Pras, Alberto Dainotti, Anna Sperotto

    Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

    6 Citations (Scopus)
    197 Downloads (Pure)


    BGP blackholing is an operational countermeasure that builds upon the capabilities of BGP to achieve DoS mitigation. Although empirical evidence of blackholing activities are documented in literature, a clear understanding of how blackholing is used in practice when attacks occur is still missing.

    This paper presents a first joint look at DoS attacks and BGP blackholing in the wild. We do this on the basis of two complementary data sets of DoS attacks, inferred from a large network telescope and DoS honeypots, and on a data set of blackholing events. All data sets span a period of three years, thus providing a longitudinal overview of operational deployment of blackholing during DoS attacks.
    Original languageEnglish
    Title of host publicationProceedings of the ACM Internet Measurement Conference 2018
    Number of pages7
    Publication statusPublished - 31 Oct 2018
    Event18th ACM Internet Measurement Conference 2018 - Northeastern University, Boston, United States
    Duration: 31 Oct 20182 Nov 2018
    Conference number: 18


    Conference18th ACM Internet Measurement Conference 2018
    Abbreviated titleACM IMC 2018
    Country/TerritoryUnited States
    Internet address


    Dive into the research topics of 'A First Joint Look at DoS Attacks and BGP Blackholing in the Wild'. Together they form a unique fingerprint.

    Cite this