Low rate Distributed Denial of Service DDoS attacks have emerged as a major threat to containerized cloud infrastructures. Due to their low traffic volumes, these attacks can be difficult to detect and mitigate, potentially causing serious harm to internet applications. This work proposes a DDoS mitigation system that effectively defends against low rate DDoS attacks in containerized environments using a multi layered defense strategy. The solution integrates a Web Application Firewall WAF, rate limiting, dynamic blacklisting, TCP and UDP header analysis, and zero trust principles to detect and block malicious traffic at different stages of the attack life cycle. By applying zero trust principles, the system ensures that each data packet is carefully inspected before granting access, improving overall security and resilience. Additionally, the systems integration with Docker orchestration facilitates deployment and management in containerized settings.
翻译:低速率分布式拒绝服务(DDoS)攻击已成为容器化云基础设施的主要威胁。由于其流量较低,此类攻击难以检测和缓解,可能对互联网应用造成严重危害。本研究提出一种DDoS缓解系统,采用多层防御策略,有效防护容器化环境中的低速率DDoS攻击。该解决方案集成了Web应用防火墙(WAF)、速率限制、动态黑名单、TCP与UDP头部分析以及零信任原则,在攻击生命周期的不同阶段检测并阻断恶意流量。通过应用零信任原则,系统确保每个数据包在授予访问权限前均经过严格检查,从而提升整体安全性与弹性。此外,该系统与Docker编排工具的集成便于在容器化环境中进行部署与管理。