DDoS attacks hitting networks are growing larger and larger every year. Each and every network operator feels this pain in it’s daily business. As much as attack vary in quantity and quality there is no easy way to mitigate them. On June 30th almost 40 network operators met in DE-CIX Meetingcenter in Frankfurt to discuss this topic and exchange their experiences.
Sebastian Abt (rh tec und Hochschule Darmstadt) welcomed the attendees in Frankfurt. Sebastian was chairing the competence group Infrastructure Security since 2011. The topic DDoS was one that challenged the community since then and he predicts, that this trend will continue. eco thanked Sebastian for his work. In his new role as the Head of R&D at DE-CIX he still will contribute to the group.
Starting July 1st Oliver Werner (netcup) will take over the responsibilities for this group. During the session he presented netcup’s approach to protect their costumers from DDoS attacks. Oliver showed which tools they use to make DDoS mitigation simple but beautiful. During the subsequent discussion the attendees shared their experiences on Oliver’s an Theo’s approach (Theo Voss (SysEleven) gave a presentation at DE-CIX Tech Meeting the day before on the same topic).
After the coffee break Daniel Kopp (DE-CIX) presented the results of a study on the effectiveness of DDoS Mitigation in the wild. In this first-of-its-kind study, the authors shed light on the extent to which blackholing is used by the IXP members and what effect it has on traffic. In the second part of his talk Daniel show the current status of RPKI Prefix Origin Validation at Route Servers.