DDoS

Question 1

AWS DDoS Whitepaper location

Answer 1

https://d1.awsstatic.com/whitepapers/Security/DDoS_White_Paper.pdf

Question 2

What does DDoS stand for?

Answer 2

Distributed denial of service

Question 3

What is a DDoS attack?

Answer 3

An attempt to make a website or application unavailable to users.

Question 4

Some methods used to achieve a DDoS

Answer 4

Large Packet floods, a combination of reflection and application techniques, or botnets.

Question 5

What is a reflection attack?

Answer 5

a method of attacking a challenge-response authentication system that uses the same protocol in both directions.

Question 6

What is an amplification attack?

Answer 6

An indirect attack where the attacker queries a reflector posing as the victim’s IP. The response is sent to the victim.

Question 7

in information security, what is a “reflector”?

Answer 7

A server that is open to the public and will respond to queries.

Question 8

What is a botnet?

Answer 8

A network of systems with specialized malware that carry out preprogrammed instructions those from a centralized command system.

Question 9

How much bigger is a query response than the query itself?

Answer 9

28x - 54x larger

Question 10

What is a layer 7 attack?

Answer 10

A flood of GET requests that overwhelm the server’s system resources.

Question 11

What is a Slowloris attack?

Answer 11

An attack that targets an application’s maximum connection limit through opening, and keeping open, many connections.

Question 12

Mitigate a DDoS attack - Method 1

Answer 12

Minimize the attack surface - Use application load balancing with firewall restrictions.

Question 13

Mitigate a DDoS attack - Method 2

Answer 13

Be ready to absorb the attack with via automated scaling procedures ready.

Question 14

Mitigate a DDoS attack - Method 3

Answer 14

Safegaurd exposed resources

Question 15

Mitigate a DDoS attack - Method 4

Answer 15

Learn normal behavior - Know normal traffic behavior for your site to make identification easier.

Question 16

Mitigate a DDoS attack - Method

Answer 16

Create a plan for attacks

Question 17

What AWS service protects against DDoS attacks?

Answer 17

AWS Shield

Question 18

What services does AWS Shield protect?

Answer 18

Elastic Load Balancing, CloudFront, Route 53

Question 19

Which types of attacks does Shield protect against?

Answer 19

SYN/UDP floods, Reflection, and other Layer 3/4 attacks

Question 20

True or False, AWS has an advanced, enterprise grade Shield service?

Answer 20

True. $3000/month

Question 21

True or false, with AWS Shield Advanced, victims do not incur charges for initialized autoscaling groups resulted from DDoS attacks?

Answer 21

True. Advanced customers are “shielded” from additional costs as a result of DDoS attacks.

Question 22

True or False: AWS has a dedicated support team for AWS Shield Advanced customers?

Answer 22

True

Question 23

True or False: AWS Shield Advanced offers near real time notifications of DDoS attacks?

Answer 23

True

Question 24

The AWS DDoS Response Team is available 8-5, 7 days a week for customers?

Answer 24

False. They are available 24x7

Question 25

What are the AWS technologies that can be used to help mitigate a DDoS attack?

Answer 25

CloudFront
Route 53
ELBs
WAFs
Autoscaling
CloudWatch