When DDoS attacks are frequent, how to do DDoS protection to protect self-interest?

In today's Internet society, the importance of DDoS protection to various industries is self-evident. "The game can't go up again", "I've been stuck on the login interface", "Payment is stuck again"... Along with complaints, the well-known game company Electronic Arts (EA) announced on social media on April 15 , Due to a DDoS attack, many of its games cannot be logged in. After 2 hours of emergency maintenance, the gaming giant, which had nearly $5 billion in revenue last year, allowed the server to return to normal. The company suffered from the infamous DDoS attack in the game industry and the Internet as a whole. As an attack method with a "long history", DDoS has accompanied the development of the Internet, leaving people with only nightmares and the infamy of "Internet thugs". The victims are not only game companies, but also many industries.
According to statistics, in addition to game companies, government websites, corporate service websites, and even financial companies have long been the preferred targets of DDoS attacks. Without DDoS protection, when under attack, online games cannot log in normally, and online payment is stuck or even transactions cannot be completed. If the attack continues for years and months, the user experience will be reduced, and the user will be turned to seek services from other providers, which will affect the direct interests of online game companies or Internet service providers. "
DDoS attacks, called Distributed Denial of Service (Distributed Denial of Service) attacks, are one of the most common network attack methods. Attackers attack the target server by manipulating multiple computers in different areas, in order to force the other party's network or The system's resources were exhausted and the service was forced to suspend the service, causing normal users to be unable to access it. "To make a popular analogy, the server is like a restaurant. The attacker called 50 people to occupy all the tables without ordering food. Instead, let the waiter serve tea. The delivery of water caused the restaurant to fail to operate normally. "Senior software engineer Zhang Tongjiang introduced, "DDoS attacks often last for days or even weeks, and the harm can be imagined. "
According to the released "DDoS Threat Report 2019", in 2019, the situation of DDoS attacks is still severe, and the proportion of DDoS attacks in emerging hot industries such as live broadcasting and e-commerce has also increased significantly. In terms of peak attacks, since the industry discovered a peak of 1.94 Tbps in 2018, it is no longer an accident that DDoS attacks enter the TB level. At the same time, overseas attacks accounted for 15%, almost doubled from 8% in 2018.
In the face of DDoS attacks, the mainstream DDoS protection methods on the market are divided into several types according to different attack traffic: "First, cloud DDoS protection. There are many such vendors, and they can usually resist attacks below 100Gbps, which is enough to meet the needs of small and medium users; If you are a large enterprise, you need to consider self-purchasing special equipment for defense. At the same time, you need to set up a plan to promptly seek carrier-level traffic cleaning services when the attack exceeds 100Gbps."
In recent years, with the increasing awareness of network security, China has targeted the network The crackdown on black production has also become more severe. By monitoring the activity of the DDoS botnet, it can be seen that with the attack of the public security organs, the technical indicators of the entire underground industry chain have begun to shrink, but it must be admitted that the entire anti-black and gray production work needs to be continued for a long time.
Although it is indeed difficult to completely eradicate DDoS attacks through DDoS protection, doing a good job of DDoS protection can greatly reduce losses. The main difficulty in completely preventing DDoS attacks is due to economic reasons. Under the current circumstances, the cost of an attacker to launch an attack is always less than the cost of a defender against attacks of the same level. Usually the cost difference can reach 1:100 or even 1:10000.
This article is reproduced from: http://www.heikesz.com/ddos1/1758.html