OK, here’s a thought I came up with when having my wee dram in front of the fireplace the other day. We’ve come to learn to live with the day to day threat of DDoS attacks. Each of which seem to grow exponentially in magnitude, launched by literally anyone having some basic programming skills, time and sometimes some resources. The collateral damage is also usually unintended and huge. But what if we could stop many these things earlier?
As we all know, it is always a matter of resources (read botnet zombies etc.) in order to fill the bandwidth of the intended target(s), either by plugging the architectural bottlenecks, hitting the Achilles heel (read DNS infrastructure and similar) or by hitting the target directly.