Re: OBESEUS - A new type of DDOS protector

[Christopher Morrow <morrowc.lists () gmail com>]

On Mon, Mar 15, 2010 at 10:02 PM, Suresh Ramasubramanian
<ops.lists () gmail com> wrote:
> That's right M.Fortaine .. and your model does not, as yet, appear to
> address what you term as EDoS and what the general security community
> calls "DDoS"

eh.. I guess I'm splitting hairs. the goal of 100k bots sending 1
query per second to a service that you know can only sustain 50k
queries/second is.. not to economically Dos someone, it's to
obliterate their service infrastructure.

Sure, you could ALSO target something hosted (for instance) at
Amazon-AWS and increase costs by making lots and lots and lots of
queries, but that wasn't the point of what Deepak wrote, nor what i
corrected.

-chris

> On Tue, Mar 16, 2010 at 7:29 AM, Guillaume FORTAINE <gfortaine () live com> wrote:
> > From my point of view, it seems similar to the EDoS concept :
> >
> > http://www.rationalsurvivability.com/blog/?s=EDos
> >
> > "EDoS attacks, however, are death by a thousand cuts. EDoS can also utilize
> > distributed attack sources as well as single entities, but works by making
> > legitimate web requests at volumes that may appear to be “normal” but are
> > done so to drive compute, network, and storage utility billings in a cloud
> > model abnormally high."
>
>
>
> --
> Suresh Ramasubramanian (ops.lists () gmail com)