May 28 – 29, 2019
Orea Hotel Voronez
Europe/Prague timezone

Adaptive mitigation of DDoS attacks using BGP Flowspec

May 29, 2019, 9:30 AM
Congress Hall (Orea Hotel Voronez)

Congress Hall

Orea Hotel Voronez

Krizkovskeho 47 603 73 Brno Czech Republic


Prupose of the presentation is to demonstrate capabilities of BGP Flowspec implemented on routers to mitigate volumetric DDoS attacks while adapting on continuously changing attack pattern. Attack detection is based on flow (NetFlow/IPFIX) technology that enable to identify attack pattern that is automatically converted into set of BGP Flowspec rules and pushed to routers for attack mitigation. Continuous monitoring of attack characteristics enables to update mitigation rules automatically when deviation from current attack pattern is detected. As part of the presentation we would like to explain flow data and show what value it brings for network operators in broader context than just DDoS protection.

Primary authors

Pavel Minařík (Flowmon Networks a.s.) Mr Jiří Knapek (Flowmon Networks a.s.)

Presentation materials