EDUCBA

EDUCBA

MENUMENU
  • Free Tutorials
  • Free Courses
  • Certification Courses
  • 600+ Courses All in One Bundle
  • Login

Denial of Service Attack

By Priya PedamkarPriya Pedamkar

Home » Software Development » Software Development Tutorials » Network Security Tutorial » Denial of Service Attack

Denial of Service Attack

Introduction to Denial of Service Attack

DoS or DDoS attack (Denial of service attack) is a cyber-attack meant to shut down machines or networks, to make it inaccessible to its intended users. DDoS attacks function by flooding the target with traffic, which results in denial of service. DDoS attacks may come from various sources, which makes it difficult to block attacks. Often Crime related DoS attacks target high profile sites such as banks, credit card payment. Thus, in short, DDoS is an attempt of attackers to prevent legitimate use of services.

What is a Denial of Service Attack?

Denial of service attack is a type of attack which comes from several sources that prevent the actual use of services. The History of DoS attacks starts when it was detected in Panix (world 3rd largest ISP in the world) that is in the year 1996, Panix was subject to Flood attack, which was later figured out by Cisco by the proper solution. Recently DDoS attacks have been seen in Arbor Networks which fell into a trap on March 5th, 2018 with a peak of 1.7 terabits per second, Secondly, on March 1st, 2018, Github faced the crisis with a peak of 1.35 terabits per seconds.

Start Your Free Software Development Course

Web development, programming languages, Software testing & others

There are two types of DoS attacks as per they are characterized:

  1. Those who crash Services.
  2. Those who Flood Services.

Distributed Denial of Service

  • The most common DoS attacks are distributed. Those are large scale attacks where the executioner uses more than one unique IP address or machine, where the attacks involve more than 3+ nodes on different networks, but some may or may not be DDoS attacks. As the incoming traffic flooding victim originates from various sources, it simply difficult to avoid those using filtering only, as sometimes it makes difficult to distinguish between legitimate traffic and malicious traffic. A few Examples of DDoS (Distributed Denial of Service) are Smurf, SYN flood.
  • Application Layer networks, Literally Known as Layer 7 DDoS attack, where attackers target the application layer. The attack targets some specific functions of a website to disable them. Those application network attacks are often used to distract security breaches. It was recorded around 20 % attacks in the year 2013 for application-layer DDoS attacks. It may be less frequent occurring but it never has slowed down in terms of continuing attacks.
  • Application Layer DDoS attacks are specifically done for disrupting targets and interfere with the database. An attack may look like the usual traffic, but it intends to harm a specific function or application.

How to Prevent Denial of Service Attacks?

Many defense techniques use the combination of attack detection, traffic classification that aimed at blocking suspicious traffic. There is a list of prevention and response tools mentioned below:

  1. Application Front end Hardware is intelligent hardware placed just before the network just before traffic reaches the servers. It has also been used in networks in conjunction. It works as data enter the servers and they classify they are dangerous.
  2. Key completion indicators are those approaches towards Denial of Service attacks against cloud applications, they mainly rely on identified path of value inside the application where it marks the legitimate traffic and monitors progress.
  3. Blackholing and sink holing are the other two factors which are the two approaches, where the traffic attacked to the DNS and ISP are sent to the null server space. Sink holing guides’ traffic to a proper IP address which gathers the traffic and rejects the bad suspicious traffic.
  4. IPS based prevention is most effective when the attacks have a signature associated with them. But as it’s a content recognition which cannot block behavior-based attacks.
  5. A DoS Defense system can block connection-based DoS attacks, having legitimate content but bad intent.

Importance of Denial of Service Attack

DDoS has evolved into the most complex and typical Denial of service attacks. However DDoS when based on political or other motives, forensic evidence is typically harder as the traffic may be legitimate or a reflection of attackers or direct flood attacks. Therefore there is a need for DDoS protection that blocks attacks and also identifies the type of attacks and alerts against future emerging threats.

How does it Work?

A DDoS attack needs a targeter to have control over a network to begin an attack on a target site. Computers & Internet of Things (IoT) devices are damaged by malware and suspicious virus turning them into separate bots, where the attackers have remote access to control the bots. As it has control has several bots called a botnet. So each IP address of a target is influenced by a botnet, then each bot responds by sending requests to the target, which results in denial of normal traffic. In DDoS attacks, the system is rigged and sends thousands of “introductions”. The servers review it and whichever is not recognized, it sends a response, waiting up to a moment to hear a reply from another end. When no reply is there, the system execution for attacks continues.

Popular Course in this category
CDN Training (2 Courses)2 Online Courses | 6+ Hours | Verifiable Certificate of Completion | Lifetime Access
4.5 (5,473 ratings)
Course Price

View Course

Related Courses
OSPF Training Program (2 Courses)Penetration Testing Training Program (2 Courses)

For Example, if we want to communicate with an eCommerce website to shop. The user system sends a small packet of information to the website. The packet works as a short introduction as it’s the user which says as hello and it requests permission to enter into the site. The server responds asking as it’s real and legitimate, then it connects accordingly.

Conclusion

DDoS attacks are rising as a threat this year and it has crossed 400 Gbps traffic volumes. The attack duration ranges from few minutes to hours which damages a certain target. These attacks use DNS or NTP servers and also allow small botnets to conduct bulk attacks. DDoS is rising on a large scale and rises on in terms of IoT and mobile devices. It’s more important to have a proper DDoS protection solution for preventing those attacks which hamper the target site on a large scale

Recommended Articles

This is a guide to Denial of Service Attack. Here we discuss the introduction and how to prevent denial of service attacks along with importance. You may also have a look at the following articles to learn more –

  1. Types of Network Security Attacks
  2. Types of Cyber Attack
  3. Types of DOS Attacks
  4. DDos Attack Mitigation

All in One Software Development Bundle (600+ Courses, 50+ projects)

600+ Online Courses

50+ projects

3000+ Hours

Verifiable Certificates

Lifetime Access

Learn More

0 Shares
Share
Tweet
Share
Primary Sidebar
Network Security Tutorial
  • Attacks
    • Types of Network Attacks
    • What is Trojan Horse Virus
    • What is DOS
    • Types of DOS Attacks
    • DDos Attack Mitigation
    • Ransomware Attack  
    • Types of Cyber Attack
    • What is a Brute Force Attack
    • What is a Phishing Attack
    • What is Cyber Attack
    • What is DDoS Attack
    • What is Man In The Middle Attack
    • What is Man In The Middle Attack
    • What is Ransomware
    • What is Pharming
    • What is Phishing
    • What is CSRF
    • DNS Amplification Attack
    • Denial of Service Attack
  • Basics
    • Security Consultant Definition
    • Security Policies
    • What is Network Security
    • What is Data Security?
    • What is Cryptography
    • Cryptography Techniques
    • Cryptography Tools
    • Data Security Techniques and Privacy
    • Digital Signature Cryptography
    • Java Cryptography
    • Basics of Cybersecurity
    • What is Network Topology
    • Algorithms and Cryptography
    • HTTP Methods
    • Security Technologies
    • Security Architecture
    • Network Topologies
    • What is a Physical Address?
    • Logical Address
    • What is Storage Area Network?
    • Mobile Ad Hoc Network
    • What is Computer Networks?
    • Security Principles
    • What is Remote Access?
  • Protocols
    • What is TCP Protocol
    • What is TCP/IP
    • How do IP Addresses Work?
    • Routing Protocols Types
    • What is Telnet
    • What is TFTP
    • What is DHCP
    • What is SFTP
    • Address Resolution Protocol
    • Internet Control Message Protocol
    • Simple Mail Transfer Protocol
    • Internet Security Protocols
    • SMTP Protocol
    • Types of Networking Protocols
    • User Datagram Protocol
    • Data Link Layer
    • Data Link Layer Services
    • Network Layer
    • Transport Layer Protocols
    • What Is Networking Protocols
    • TFTP
    • What is ARP
    • Basic Fundamental Of Networking
    • What is IPv4
    • What is IPv6
    • CIFS Protocol
    • What is SMB?
    • What is EIGRP
    • What is LLDP?
  • Routing
    • What is Router
    • Types of Routers
    • Dynamic Routing
    • Routing Algorithms
    • Routing Protocol
    • What is Routing
    • What is Static Routing
    • Important Types of DNS Servers (Powerful)
  • Algorithm
    • IDEA Algorithm
    • MD5 Algorithm
    • Symmetric Algorithms
    • Diffie Hellman Key Exchange Algorithm
    • Digital Signature Algorithm
    • Encryption Algorithm
    • Advanced Encryption Standard
    • Asymmetric Encryption
    • ElGamal Encryption
    • HMAC
    • DES Algorithm
    • Brute Force Algorithm
    • SHA Algorithm
    • RSA Algorithm
    • What is Digital Certificate?
    • Certificate Revocation
    • RC5
  • Encryption/ Decryption
    • Encryption process
    • Public Key Encryption
    • Symmetric Key Encryption
    • What is Encryption
    • What is Decryption
    • Types of Cipher
    • Transposition Techniques
    • What is Steganography
    • One Time Pad
    • Steganography Techniques
  • Hosting
    • Types of Web Hosting
    • Free Web Hosting Sites
    • What is Hosting
    • What is VPS Hosting
    • What is Web Hosting
    • Types of Domain
    • VPN Applications for PC
    • Why we use VPN?
    • What is Virtual Host?
  • Firewalls
    • What is a Firewall?
    • Types of Firewalls
    • Firewall Devices
    • Firewall Uses
  • Advanced
    • Cryptosystems
    • Configuring DHCP Server
    • Block Cipher modes of Operation
    • TCP/IP Model
    • Types of Network
    • Types of Network Devices
    • Types of Network Topology
    • Types of Intrusion Prevention System
    • Types of Proxy Servers
    • Types of Websites
    • Types of NAT 
    • Mobile IP
    • Career in Automobile Design
    • What is TFS
    • What is NAT
    • What is OSI Model
    • Data Link Layer OSI Model
    • What is Cross Site Scripting
    • Applications of Sensors
    • ARP Packet Format
    • Asymmetric Information
    • Autoencoders
    • What is FTP Server?
    • IPS Tools
    • IPv4 Header Format
    • IPv6 Header Format
    • Authentication Header
    • Kerberos
    • Network Mapper
    • Network Scanning Tools
    • Network Mapping Tools
    • Network Access Control
    • Vulnerability Assessment Tools
    • Network Sniffer
    • Networking Commands
    • Networking Devices
    • Networking Strategies
    • Digital Certificate
    • What is a Digital Signature?
    • Digital Signature Softwares
    • Digital Signature Types
    • Digital Signature vs Digital Certificate
    • PKCS
    • What is FTP
    • FTP Commands
    • What is MIME?
    • What is Smart Card?
    • Networking Ports
    • Mutual Authentication
    • Password Authentication
    • Data Masking 
    • Authentication Tokens
    • Biometric Authentication
    • What is IP?
    • IPSec
    • Secure Electronic Transaction
    • What is CIDR
    • Static Binding and Dynamic Binding
    • What is SSL
    • PKIX
    • Public Key Infrastructure
    • What is Wireshark
    • Daisy Chain Topology
    • Markov Logic Network
    • Security engineering
    • SNMP Monitoring Tools
    • Network Analysis Tools
    • Server Monitoring Tools
    • Network Discovery Tools
    • Network Management Tool
    • SIEM Tools
    • OSINT Tools
    • Multiple Ping Tool
  • Interview Questions
    • Network Security Interview Questions
    • Networking Interview Questions
    • EIGRP Interview Questions

Related Courses

CDN Training

OSPF Certification Training

Penetration Training Course

Footer
About Us
  • Blog
  • Who is EDUCBA?
  • Sign Up
  • Corporate Training
  • Certificate from Top Institutions
  • Contact Us
  • Verifiable Certificate
  • Reviews
  • Terms and Conditions
  • Privacy Policy
  •  
Apps
  • iPhone & iPad
  • Android
Resources
  • Free Courses
  • Java Tutorials
  • Python Tutorials
  • All Tutorials
Certification Courses
  • All Courses
  • Software Development Course - All in One Bundle
  • Become a Python Developer
  • Java Course
  • Become a Selenium Automation Tester
  • Become an IoT Developer
  • ASP.NET Course
  • VB.NET Course
  • PHP Course

© 2020 - EDUCBA. ALL RIGHTS RESERVED. THE CERTIFICATION NAMES ARE THE TRADEMARKS OF THEIR RESPECTIVE OWNERS.

EDUCBA Login

Forgot Password?

EDUCBA
Free Software Development Course

Web development, programming languages, Software testing & others

*Please provide your correct email id. Login details for this Free course will be emailed to you
Book Your One Instructor : One Learner Free Class

Let’s Get Started

This website or its third-party tools use cookies, which are necessary to its functioning and required to achieve the purposes illustrated in the cookie policy. By closing this banner, scrolling this page, clicking a link or continuing to browse otherwise, you agree to our Privacy Policy

EDUCBA

*Please provide your correct email id. Login details for this Free course will be emailed to you
EDUCBA
Free Software Development Course

Web development, programming languages, Software testing & others

*Please provide your correct email id. Login details for this Free course will be emailed to you

Special Offer - CDN Training Learn More