1. DDoS

2. 2014 Radware Ltd. All rights reserved. 2 Radware 2013DDoS DefensePro 3. 4. 2014 Radware Ltd. All rights reserved. 4 Radware Radware Ltd. / :1997NSADAQ:19999 :750R&D330 40 20006 5. 2014 Radware Ltd. All rights reserved. Radware LinkProof DDoS&IPS DefensePro Internet ADC Alteon WAFWebApplication Firewall AppWall 5 6. 2014 Radware Ltd. All rights reserved. DDoS A 2012DDoS 2013 50.9% A 27.3% 21.8% DDoS No.1 DefensePro 6 7. 8. 2014 Radware Ltd. All rights reserved. 8 - - - Webetc. DDoS DDoS DDoS 9. DDoS(Distributed Denial of Service) DoS(Denial of Service) DDoS DoSDoS PC Web DoS DDoS 9 10. 2014 Radware Ltd. All rights reserved. 10 DDoSSYN () C&C (TCP SYN) (TCP SYN) (TCP SYN) (TCP SYN) Web 11. 2014 Radware Ltd. All rights reserved. DDoS - IRC LOICHOIC - - -BOT - 11 DDoS DDoS 12. 2014 Radware Ltd. All rights reserved. 12 DDoS DDoS DDoS DDoS 13. Radware 2013DDoS 14. 2014 Radware Ltd. All rights reserved. 14 ERT 24 ( Emergency Response Team 15. 2014 Radware Ltd. All rights reserved. 15 2013 &(2013) http://www.radware.co.jp/product/dp/whitepapers/Radware_2013_ERT_Report_Ja.pdf Facebook ERT300 198() 16. 2014 Radware Ltd. All rights reserved. 16 DDoS 28% SQL 23% Web 17% 11% 7% DNS 3% 3% iFrame 1% 7% Source: 2013 Cyber Attacks Trends, Hackmagedon DDoS 17. 2014 Radware Ltd. All rights reserved. 17 DDoS(2013) Feb/July 2013 Operation Ababil Targeting financial institutions July 2013 The Colombian Independence Day Attack March 2013 Spamhaus The biggest DDoS attack ever August 2013 Syrian Electronic Army attacking US media outlets November 2013 & Operation Opindependence June 2013 South Korea governement websites under attacks 18. 2014 Radware Ltd. All rights reserved. 18 % 1DDoS 19. 2014 Radware Ltd. All rights reserved. 19 2013 DDoS DDoS 20. 2014 Radware Ltd. All rights reserved. 20 2013 DDoS 21. 2014 Radware Ltd. All rights reserved. 21 HTTP Web GET /search.php HTTP/1.0 GET /search.php HTTP/1.0 GET /search.php HTTP/1.0 HTTPWeb 22. 2014 Radware Ltd. All rights reserved. Web SlowlorisRUDY etc. RUDY content-lengthPOST Web Web 1Byte(HTTP POST) 1Byte(HTTP POST) 1Byte(HTTP POST) 22 23. 2014 Radware Ltd. All rights reserved. 23 DNSDNS DNSUDP DNSUDP DNSUDP DNS DNS 24. DNS amp DNS DNS DNS DNS DNS DNS DNS DNS DNS 24 25. 2014 Radware Ltd. All rights reserved. 25 DDoS % / DDoS50%5 26. 2014 Radware Ltd. All rights reserved. July 12, 2012 Innocence of Muslims trailer released on YouTube September 11, 2012 World-wide protest against the movie resulting in the deaths of 50 people September 18, 2012 Operation Ababil begins (Operation Ababil) DDoS 26 27. 2014 Radware Ltd. All rights reserved. 27 (Operation Ababil) DDoS 28. 2014 Radware Ltd. All rights reserved. 28 (Operation Ababil) 4(20137) DDoS TCPUDP UDP 25Gbps DDoS HTTP (GETPUT) DNS amp HTTPS(GET) 15CPU http://security.radware.com 29. CDNDDoS (CDN) DoS/DDoS CDN70% CDNDoS/DDoS 30% 70% 29 30. 2014 Radware Ltd. All rights reserved. 20121DDoS EL AL CDN URL CookieCDN CDNDDoS 30 31. 2014 Radware Ltd. All rights reserved. CDN CDN Edge Client Cache CDN 31 32. 2014 Radware Ltd. All rights reserved. 32 DDoS DDoS Firewall 21% 7%12% 7% 22%31% FirewallDDoS 33. 2014 Radware Ltd. All rights reserved. 33 DDoS FW/UTM LB IPS SYN UDP DNS HTTP SSL-DDoS DDoS 34. DefensePro 35. 2014 Radware Ltd. All rights reserved. 35 DDoS ? ? ? ? ? HTTPS/DNS DefensePro 36. 2014 Radware Ltd. All rights reserved. 2 36 TCP(SYN,ACK,FIN)SYN 1 37. 2014 Radware Ltd. All rights reserved. 37 / = 5 () 38. 2014 Radware Ltd. All rights reserved. 38 25 Million PPS Other DoS Mitigation Solutions DefensePro(ODS HTQ) DDoS(ASIC) 39. 2014 Radware Ltd. All rights reserved. 39 DME DDoSASIC SME ASIC CPU &DoS/DDoS 40. 2014 Radware Ltd. All rights reserved. :HTTP HTTP URL HTTPURL 40 41. 2014 Radware Ltd. All rights reserved. 41 :DNS DNS DNS DNS AAAA TEXT IPv6 A Query A 42. 2014 Radware Ltd. All rights reserved. 42 HTTPS HTTPS SSLDDoS Alteon(SSL)CPU Client AlteonSSL HTTPS DefensePro 43. 2014 Radware Ltd. All rights reserved. ? ? ? ? ? HTTPS/DNS DefensePro (OPEX) HW ASIC(DME, SME) AlteonSSL HTTPS HTTP, DNS 43 44. https://www.facebook.com/nihonradware https://twitter.com/NihonRadware