netsec-sig - Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars
Subject: Internet2 Network Security SIG
List archive
Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars
Chronological Thread
- From: David Farmer <>
- To: Frank Seesink <>
- Cc: David Farmer <>, Steven Wallace <>, "" <>
- Subject: Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars
- Date: Tue, 08 Sep 2015 14:26:56 -0500
- Organization: University of Minnesota
My issue wasn't really about the size
of the network you or I have, but the size of threat(s) we all
face.
An attack in the 3G or less scale is available on demand for less the $50 and many of these attacks are occurring at any moment. Attacks in the 3-30G scale are fairly common (or "normal"), they are seen on the Internet on a daily or weekly basis, but for attacker with modest motivation and resources, attacks on this scale are not hard to achieve. The 10G Steve quoted is in the middle of this range. Attacks in the 30-300G scale are clearly severe, while probably not seen on a daily basis, they are seen regularly, at least on the lower half of this scale. They do require a highly motivated attacker and significant resources, but these are clearly creditable threats for most of our institutions. And attack of this scale are being seen against our community. Attacks at 300G+ are maximal creditable threats, rare and given the resources necessary are probably not realistic to be seen or defended against by our community. However, it probably only a matter of time for this scale of attack to be an issue. On 9/8/15 10:53 , Frank Seesink wrote: While I understand Dave’s view, our reality is a bit different. Truth is what constitutes a “trivial” vs. “normal” (odd word choice) vs. “severe” vs. “extreme” attack level is relative. One size does not fit all. Maybe in Minnesota 3-30G is “normal”, but here in WV DDoS attacks >10G can start impacting services. I would call that anything BUT “normal”. But our regional network doesn’t have the capacity some of our compatriots have. I envy our neighbors with their 100G+ backbones, but I have to be the voice for those of us coming from smaller institutions/networks. -- ================================================ David Farmer Email: Office of Information Technology University of Minnesota 2218 University Ave SE Phone: 1-612-626-0815 Minneapolis, MN 55414-3029 Cell: 1-612-812-9952 ================================================ |
- [Security-WG] seeking input for providing DDoS vendors background for the webinars, Steven Wallace, 09/01/2015
- [Security-WG] seeking input for providing DDoS vendors background for the webinars, Steven Wallace, 09/01/2015
- Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars, David Farmer, 09/08/2015
- Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars, Frank Seesink, 09/08/2015
- RE: [Security-WG] seeking input for providing DDoS vendors background for the webinars, Schopis, Paul, 09/08/2015
- Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars, Steven Wallace, 09/08/2015
- Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars, David Farmer, 09/08/2015
- Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars, Mike Scarpellino [RCI], 09/08/2015
- RE: [Security-WG] seeking input for providing DDoS vendors background for the webinars, Kurz, Kenneth J., 09/09/2015
- RE: [Security-WG] seeking input for providing DDoS vendors background for the webinars, Schopis, Paul, 09/09/2015
- Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars, Mike Scarpellino [RCI], 09/08/2015
- Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars, David Farmer, 09/08/2015
- Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars, Steven Wallace, 09/08/2015
- Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars, David Farmer, 09/08/2015
- RE: [Security-WG] seeking input for providing DDoS vendors background for the webinars, Schopis, Paul, 09/08/2015
- Re: [Security-WG] seeking input for providing DDoS vendors background for the webinars, Frank Seesink, 09/08/2015
Archive powered by MHonArc 2.6.24.