Inside AWS’s Crusade Against IP Spoofing and DDoS Attacks

Inside AWS’s Crusade Against IP Spoofing and DDoS Attacks

April 11, 2024 at 10:48AM

AWS VP and Distinguished Engineer, Tom Scholl, is actively combating DDoS attacks by addressing the long-standing issue of IP spoofing. By engaging with external networks and leveraging AWS’s global visibility, they have made significant strides in disrupting IP spoofing-based attacks. The company’s efforts not only protect its own network but also contribute to safeguarding the entire internet.

Based on the meeting notes, the key takeaways are:

1. Amazon Web Services (AWS) actively addresses the issue of DDoS attacks and IP spoofing, going beyond just mitigating attacks in progress to identifying and preventing the sources of continuing attacks. This has led to new success in disrupting IP spoofing-based attacks in recent years.

2. Tom Scholl, AWS VP and Distinguished Engineer, has been instrumental in leading these efforts and collaborating with external networks to improve their observability tools in order to quickly identify and shut down DDoS attacks, particularly those based on IP spoofing.

3. The global visibility and connectivity of AWS enable it to disrupt DDoS infrastructure, reducing the threat not only to AWS and its customers, but also to the entire internet.

4. AWS uses its large infrastructure and interconnected networks to identify and defend against various types of DDoS attacks, including IP spoofing, botnet command and control servers, and application-based attacks using open proxies.

5. In addition to preventing attacks at the source, AWS Shield, the managed DDoS Protection Service, automatically mitigates thousands of attacks on a daily basis, with a 24/7 response team handling the remaining attacks.

If you need further assistance or have specific questions about the meeting notes, feel free to ask!

Full Article