ProNet notifications between DMS and ISP
Protective Networking (ProNet). A framework for coordinated responses to distributed attacks
Quizzed article REF: TE7750 V1
ProNet notifications between DMS and ISP
Protective Networking (ProNet). A framework for coordinated responses to distributed attacks

Authors : Mohamed BOUCADAIR, Christian JACQUENET

Publication date: January 10, 2021, Review date: August 24, 2021 | Lire en français

Logo Techniques de l'Ingenieur You do not have access to this resource.
Request your free trial access! Free trial

Already subscribed?

6. ProNet notifications between DMS and ISP

Activating filters local to each domain is not enough to block an Internet-wide attack. Moreover, given the large number of source machines involved in an attack, a large number of filters are required.

Applying these filters has an impact on router and firewall performance.

To solve this problem in a comprehensive way, DMS services can work with ISPs to block upstream machines injecting attack traffic as soon as possible, so as to limit the propagation of attack traffic. ISPs can then prevent these machines from connecting to the access network(s), by refusing to allocate IP addresses to them.

This solution requires ISPs to expose an API to provide third parties with value-added services such as address filtering.

In concrete terms, a DPA agent determines...

You do not have access to this resource.
Logo Techniques de l'Ingenieur

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed?

Ongoing reading
ProNet notifications between DMS and ISP

Article included in this offer

"Security of information systems"

( 86 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details
Contact our team FAQ