DDoS Attacks and Mitigation

2.

Foundational Networking Concepts for DDoS

2.1.

2.1.1.

Layer 7: Application Layer

2.1.1.1.

Application Protocols and Services

2.1.1.2.

User Interface and Interaction

2.1.2.

Layer 6: Presentation Layer

2.1.2.1.

Data Encoding and Formatting

2.1.2.2.

Encryption and Compression

2.1.3.

Layer 5: Session Layer

2.1.3.1.

Session Establishment and Management

2.1.3.2.

Connection Coordination

2.1.4.

Layer 4: Transport Layer

2.1.4.1.

TCP and UDP Protocol Functions

2.1.4.2.

Port Numbers and Services

2.1.5.

Layer 3: Network Layer

2.1.5.1.

IP Addressing and Subnetting

2.1.5.2.

Routing and Path Determination

2.1.6.

Layer 2: Data Link Layer

2.1.6.1.

2.1.6.2.

Frame Transmission and Error Detection

2.1.7.

Layer 1: Physical Layer

2.1.7.1.

Physical Media Types

2.1.7.2.

Signal Transmission Methods

2.2.

The TCP/IP Model

2.2.1.

Application Layer

2.2.1.1.

Protocol Mapping to OSI Layers

2.2.1.2.

Service Interfaces

2.2.2.

Transport Layer

2.2.2.1.

TCP Connection-Oriented Communication

2.2.2.2.

UDP Connectionless Communication

2.2.2.3.

Reliability and Flow Control Mechanisms

2.2.3.

2.2.3.1.

IP Addressing Schemes

2.2.3.2.

Packet Routing and Forwarding

2.2.4.

Network Access Layer

2.2.4.1.

Physical and Data Link Functions

2.2.4.2.

Hardware Interface Management

2.3.

Key Protocols and Services

2.3.1.

TCP (Transmission Control Protocol)

2.3.1.1.

Three-Way Handshake Process

2.3.1.2.

Connection Establishment Procedures

2.3.1.3.

Connection Teardown Mechanisms

2.3.2.

UDP (User Datagram Protocol)

2.3.2.1.

Stateless Communication Model

2.3.2.2.

Vulnerability to DDoS Exploitation

2.3.3.

IP (Internet Protocol)

2.3.3.1.

Packet Structure and Fragmentation

2.3.3.2.

Source and Destination Addressing

2.3.4.

ICMP (Internet Control Message Protocol)

2.3.4.1.

Echo Requests and Replies

2.3.4.2.

Error and Status Messaging

2.3.5.

DNS (Domain Name System)

2.3.5.1.

Name Resolution Process

2.3.5.2.

Amplification Attack Vulnerabilities

2.3.6.

HTTP/HTTPS (Hypertext Transfer Protocol)

2.3.6.1.

Web Traffic Characteristics

2.3.6.2.

TLS/SSL Secure Communication

2.3.7.

NTP (Network Time Protocol)

2.3.7.1.

Time Synchronization Services

2.3.7.2.

Amplification Attack Vectors

2.3.8.

SNMP (Simple Network Management Protocol)

2.3.8.1.

Network Device Management

2.3.8.2.

Security Vulnerabilities and Exploitation

Previous

1. Introduction to Denial-of-Service Attacks

Go to top

Next

3. Anatomy of a DDoS Attack