loading page

Revealing the Architectural Design Patterns in the Volumetric DDoS Defense Design Space
  • +4
  • Zhiyi Zhang,
  • Guorui Xiao,
  • Sichen Song,
  • R. Can Aygun,
  • Angelos Stavrou,
  • Lixia Zhang,
  • Eric Osterweil
Zhiyi Zhang

Corresponding Author:[email protected]

Author Profile
Guorui Xiao
Author Profile
Sichen Song
Author Profile
R. Can Aygun
Author Profile
Angelos Stavrou
Author Profile
Lixia Zhang
Author Profile
Eric Osterweil
Author Profile


Distributed Denial of Service (DDoS) attacks have plagued the Internet for decades. Despite the ever-increasing investments into mitigation solution development, DDoS attacks continue to grow with ever-increasing frequency and magnitude. To identify the root cause of the above-observed trend, in this paper, we conduct a systematic and architectural evaluation of volumetric DDoS detection and mitigation efforts over 24,000 papers, articles, and RFCs over 30+ years. To that end, we introduce a novel approach for systematizing comparisons of DDoS research, resulting in a comprehensive examination of the DDoS literature. Our analysis illustrates a small set of common design patterns across seemingly disparate solutions, and reveals insights into deployment traction and success of DDoS solutions. Furthermore, we discuss economic incentives and the lack of harmony between synergistic but independent approaches for detection and mitigation. As expected, defenses with a clear cost/benefit rationale are more prevalent than those that require extensive infrastructure changes. Finally, we discuss the lessons learned which we hope can shed light on future directions that can potentially turn the tide of the war against DDoS.
02 May 2024Submitted to TechRxiv
06 May 2024Published in TechRxiv