A First Joint Look at DoS Attacks and BGP Blackholing in the Wild

Mattijs Jonker, Aiko Pras, Alberto Dainotti, Anna Sperotto

    Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

    2 Citations (Scopus)
    113 Downloads (Pure)

    Abstract

    BGP blackholing is an operational countermeasure that builds upon the capabilities of BGP to achieve DoS mitigation. Although empirical evidence of blackholing activities are documented in literature, a clear understanding of how blackholing is used in practice when attacks occur is still missing.

    This paper presents a first joint look at DoS attacks and BGP blackholing in the wild. We do this on the basis of two complementary data sets of DoS attacks, inferred from a large network telescope and DoS honeypots, and on a data set of blackholing events. All data sets span a period of three years, thus providing a longitudinal overview of operational deployment of blackholing during DoS attacks.
    Original languageEnglish
    Title of host publicationProceedings of the ACM Internet Measurement Conference 2018
    Pages457-463
    Number of pages7
    DOIs
    Publication statusPublished - 31 Oct 2018
    Event18th ACM Internet Measurement Conference 2018 - Northeastern University, Boston, United States
    Duration: 31 Oct 20182 Nov 2018
    Conference number: 18
    https://conferences.sigcomm.org/imc/2018/

    Conference

    Conference18th ACM Internet Measurement Conference 2018
    Abbreviated titleACM IMC 2018
    CountryUnited States
    CityBoston
    Period31/10/182/11/18
    Internet address

      Fingerprint

    Cite this

    Jonker, M., Pras, A., Dainotti, A., & Sperotto, A. (2018). A First Joint Look at DoS Attacks and BGP Blackholing in the Wild. In Proceedings of the ACM Internet Measurement Conference 2018 (pp. 457-463) https://doi.org/10.1145/3278532.3278571