[SECURITY] Application layer attacks/DDoS attacks

Ramy Hashish ramy.ihashish at gmail.com
Sat May 23 21:33:42 UTC 2015

Yes Harlan, you are absolutely right, even if this won't stop the
botnet-based DDoS attacks, but at least will significantly decrease the
volume/frequency of the volume based attacks.

On the other side, the DDoS protection now become a business where
all-tiers ISPs make money of, and those ISPs is the exact place where the
implementation of anti-spoofing make the best sense, conflict of interests

However, the trusted network initiative might be a good approach to start
influencing operators to apply anti-spoofing mechanisms.


On 23 May 2015 10:48 pm, "Harlan Stenn" <stenn at ntp.org> wrote:

Just to ask, what is the expected effect on DDoS attacks if folks
implemented BCP38?

How does the cost of implementing BCP38 compare to the cost of other
solution attempts?


More information about the NANOG mailing list