Tutorial: ISP Security - Real World Techniques II

Speakers: Brian W. Gemberling, UUNET. Barry Raveendran Greene, Cisco Systems. Chris Morrow, UUNET/Verizon. The Internet is a battleground, with ISPs and their customers right in the middle of the line of fire. What ISPs need to protect themselves are tools and techniques that work in the line of fire, i.e., tools that fight DoS attacks and provide something other than a busy signal on the customer service line. This tutorial will walk ISPs through the five stages of working an attack: preparation, identification, classification, traceback, and reaction. Focus will be placed on techniques that work - with specific vendor features left for other sessions. All the techniques have been validated and proven to be operationally deployable and workable under conditions of network stress. The key objective is to empower other ISPs to deploy these vendor-independent techniques, which will provide a foundation for inter-NOC cooperation to trace back the attacks to their source. See more at: https://www.nanog.org/meetings/nanog2...