Securosis Research Paper: Defending Against Application Denial of Service Attacks
Application Denial of Service (AppDoS) attacks introduce another level of complexity to ensure that critical web applications are available and operational. Defending against AppDoS requires a multi-faceted approach that typically starts with a mechanism to filter attack traffic. It also requires significant collaboration between development, operations, and security.
The white paper provides an overview of:
- Common attack tactics and possible mitigations for each;
- Why application DoS attacks are more difficult to detect than volume-based network DDoS;
- Combining server configuration, network, and application-based defenses for mitigation.
Securosis is a leading information security research and advisory firm.