IT Security & Network Security News & Reviews: Fighting DDoS Attacks: 10 Critical Lessons to Learn

 
 
By Fahmida Y. Rashid  |  Posted 2011-07-20
 
 
 

Not an If, but a When

DDoS attacks are increasingly becoming larger, more damaging and easier to launch. Organizations should just assume they will be the next victim and prepare accordingly.

Not an If, but a When

DDoS Attacks on the Rise

Organizations must proactively implement a mitigation plan that accounts for large and sophisticated DDoS attacks.

DDoS Attacks on the Rise

Put DDoS in the Budget

Organizations have to juggle competing priorities and requirements for various IT projects. To ensure network protection technology, such as for DDoS mitigation, doesn't get shortchanged, allocate a separate budget item.

Put DDoS in the Budget

Evaluate the Choices

There are several choices of DDoS protection offerings, including having the physical infrastructure onsite, upstream solutions or adopting cloud-based services from a third-party provider.

Evaluate the Choices

Consider the Pros, Cons

Even though mitigation planning can be complicated, considering each option's pros and cons carefully will help avoid most major pitfalls.

Consider the Pros, Cons

In-House or Outsource?

Defending against DDoS attacks requires experts. Those experts may already be in the company or have a third-party expert available on speed-dial.

In-House or Outsource?

Learn From Others

There's no shortage of information available about organizations that have recently been hit by DDoS attacks. Review what mistakes other organizations made and what made them vulnerable. Then apply the lessons learned.

Learn From Others

Know Your Limits

Organizations that know their limits can plan for the worst-case scenario. It's easier to verify that a security and protection plan is sufficient once the limits have been identified.

Know Your Limits

Security Is Holistic

DDoS mitigation shouldn't be the end-all in security. There are many other threats, and IT teams have to think about other protection measures, such as intrusion and detection. Attackers won't bother with a DDoS attack if there are inviting flaws in the network.

Security Is Holistic

Update Regularly

Threats are continually evolving, even DDoS attacks, so organizations need to regularly review plans to ensure the measures in place are still effective.

Update Regularly

Rocket Fuel