Distributed Denial of Service (DDoS) attacks have become increasingly prevalent and dangerous in the context of Internet of Things (IoT) networks, primarily due to the low-security configurations of many connected devices. This paper analyzes the nature and impact of DDoS attacks such as those launched by the Mirai botnet, and proposes layered mitigation strategies tailored to IoT environments. Key solutions explored include IPv6 Unique Local Addresses (ULA), edge computing, software-defined networking (SDN), honeypot deception, and machine learning-based intrusion detection systems. The paper aims to help engineers and researchers understand and implement practical countermeasures to protect IoT infrastructures.

翻译：分布式拒绝服务（DDoS）攻击在物联网（IoT）网络环境中日益普遍且危害加剧，这主要源于许多联网设备的安全配置薄弱。本文分析了由Mirai僵尸网络等发起的DDoS攻击的本质与影响，并提出了针对物联网环境设计的层次化缓解策略。探讨的核心解决方案包括IPv6唯一本地地址（ULA）、边缘计算、软件定义网络（SDN）、蜜罐欺骗技术以及基于机器学习的入侵检测系统。本文旨在帮助工程师与研究人员理解并实施可行的防护措施，以保障物联网基础设施的安全。