This sounds like what I was discussing about stopping the attack before it reaches the intended target. Heidi Projects Agency (DARPA), security technology firm Cs3 is looking at the concept of reverse firewalling, or keeping the flood of data from a DoS attack dammed up at the source. The Reverse Firewall works by filtering the outgoing packets from a network. The difference between a legitimate application that uses high bandwidth and a packet flooding attack is that, in the former case, the machine at the other end of the conversation is participating in a two-way conversation. In the case of a DoS attack, the exchange is one sided. (Source: Vnunet, 6 November)
This archive was generated by hypermail 2b30 : Sun May 26 2002 - 11:30:16 PDT