Threat P.O.DDoS.3

URI: P.O.DDoS.3

Description: Distributed DoS attack on service Process from subnet LogicalSubnet: an attacker with control over multiple vulnerable systems connected to LogicalSubnet can use them to send excessive messages via a privileged network paths through firewalls and overload service Process. The best defence is to arrange with your ISP to manage and restrict the traffic sent from the Internet (check threat causes for an unrestricted network interface).

Threat Type: Primary Threat

Matching Pattern:

MP-DDoS

Finds a service with which at least one client communicates via the Internet.

(empty)

H.O.HP-iT.0

Effect of overload at process Process on Host: if the process Process is overloaded, it may cause an overload on its host Host.

P.A.HP-iT.6

Effect of overload at low priority process Process: the priority of process Process may be reduced to prevent it from overloading its host Host, but in that case Process may become unavailable even if Host is not.

(empty)

Overloaded at Role_Process

CSG-FilterDosAtInterface

Filter DDoS messages to a target in the core network. This normally has to be arranged through the Internet connection service provider, so it is modelled by assigning the corresponding control to the final interface to the Internet.

Threat P.O.DDoS.3

MP-DDoS

Triggered by Threat (0)

Triggers Secondary Threats (2)

H.O.HP-iT.0

P.A.HP-iT.6

Triggered By Control Strategy (0)

Misbehaviour Sets (1)

Control Strategies (1)