Inter-Provider DDoS Attack Mitigation
Not only the internals of a provider's cloud, but also the connections between clouds belonging to different providers are subject to attacks. While within its own cloud each provider may be able to protect effectively using various DDoS mitigation techniques, achieving fast response times to combat attacks directed to the inter-cloud links presents a new set of challenges, since each provider may not have full visibility of the attack.
-
I am working on this increasingly important problem. Since these mitigation mechanisms involve multiple providers, the standardization aspect is crucial to make the techniques and APIs that we are developing useful. I am active within the
i2nsf anddots WGs in IETF, working with other providers and vendor. - This is a link to the active IETF draft "Inter-Cloud DDoS Mitigation API" (draft-fang-i2nsf-inter-cloud-ddos-mitigation-api) on the subject.