A study on reduction of DDoS amplification attacks in the UDP-based CLDAP protocol

Abstract

DDoS attacks using the CLDAP protocol are increasing. CLDAP is an open-standard application that allows access to and maintenance of a wide range of network directory information. DDoS attacks using the CLDAP protocol exploit this, and can significantly increase the packet amplification rate as compared to existing UDP flooding attacks; this can immediately disable small and medium sized servers. Therefore, research is needed to reduce the packet amplification of UDP flooding attacks that exploit the CLDAP protocol. In this paper, we propose a method to reduce DDoS attacks that use the CLDAP protocol.