Agenda 1. KISA(Korea Internet & Security Agency of Korea) 2. Background & Case of DDoS Attack in Korea 3..kr DNS DDoS Protection Project 2010 4. Q & A.

Slides:

Advertisements

Similar presentations

You have been given a mission and a code. Use the code to complete the mission and you will save the world from obliteration…

Advertisements

Facts and Figures Asia Pacific 2010

1 Copyright © 2010, Elsevier Inc. All rights Reserved Fig 2.1 Chapter 2.

Technical Models of NAPs PTTMetro Project Milton Kaoru Kashiwakura PTTMetro Technical Coordinator NAPLA 2005 – Lima / Peru.

RIPE NCC DNS Update Anand Buddhdev. Anand Buddhdev, 15 May K-root Service stable with 17 instances – 5 global – 12 local (prefixes announced with.

The End of IPv4 Did we panic? What panic?

CNGI/CERNET2 Updates Jilong Wang, Tsinghua U

1 Optical network CERNET's experience and prospective Xing Li, Congxiao Bao

Lee, Seungjun ( ) Korea Advanced Institute of Science and Technology August 28, 2003 APAN Measurement WG meeting eTOP End-to-end.

High Performance Research Network. Development Lab. / Supercomputing Center 1 Design of the Detection and Response System against DDoS attacks Yoonjoo.

National Computerization Agency (NCA) Future of KOREN/APII October 31, 2003 Byun, Sang-Ick / NCA

Security Issues In Mobile IP

Korea Network Information Center APOPS KIOW Korea Internet Operation Workshop - Billy MH Cheon : February, 2003.

APNIC 22 KRNIC of NIDA APNIC Membership Fees - KRNIC Review & Comments - APNIC Membership Fees - KRNIC Review & Comments -

11 th Policy SIG Report Takashi Arano Kenny Huang Toshiyuki Hosaka Chair/co-chair of APNIC Address Policy SIG.

(Distributed) Denial of Service Nick Feamster CS 4251 Spring 2008.

ARIN Update Marc Crandall ARIN Advisory Council. Policy Discussions Last Call – Equitable IPv4 Run-Out When ARIN gets its last /8, instead of giving ISPs.

Spearheading Internet technology and policy development in the African Region Resource Services Report.

Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13

Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13

2 pt 3 pt 4 pt 5 pt 1 pt 2 pt 3 pt 4 pt 5 pt 1 pt 2 pt 3 pt 4 pt 5 pt 1 pt 2 pt 3 pt 4 pt 5 pt 1 pt 2 pt 3 pt 4 pt 5 pt 1 pt ShapesPatterns Counting Number.

Sec. 3-3 Parallel and Perpendicular Lines

School Shop. Welcome to my shop. You have 10p How much change will you get? 7p 3p change.

2010 fotografiert von Jürgen Roßberg © Fr 1 Sa 2 So 3 Mo 4 Di 5 Mi 6 Do 7 Fr 8 Sa 9 So 10 Mo 11 Di 12 Mi 13 Do 14 Fr 15 Sa 16 So 17 Mo 18 Di 19.

1 SANS Technology Institute - Candidate for Master of Science Degree 1 Leveraging the Load Balancer to Fight DDoS Brough Davis September 2010 GIAC GCIA,

KIPO’s Policies on IP Marketplace Choongjae Lee Intellectual Property Promotion Division KIPO (Korean Intellectual Property Office)

Towards a Safer and More Robust Internet Paul Vixie Internet Software Consortium August 2003.

ACT User Meeting June Your entitlements window Entitlements, roles and v1 security overview Problems with v1 security Tasks, jobs and v2 security.

© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 1 © 2010 Cisco and/or its affiliates. All rights reserved. LISP Mobility.

© S Haughton more than 3?

Area of triangles.

Defending Against Denial of Service Attacks Presented By: Jordan Deveroux 1.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 EN0129 PC AND NETWORK TECHNOLOGY I IP ADDRESSING AND SUBNETS Derived From CCNA Network Fundamentals.

Lets play bingo!!. Calculate: MEAN Calculate: MEDIAN

SLP – Endless Possibilities What can SLP do for your school? Everything you need to know about SLP – past, present and future.

Chapter 5 Test Review Sections 5-1 through 5-4.

1 APNIC Status Report RIPE 50 Stockholm, Sweden. 2 Selected activities – Services IPv4 Allocations – accelerating –Single /8 allocation in Japan IPv6.

Overview of APAN IPv6 Task Force Jianping Wu Chair of APAN IPv6 TF Jan. 30, 2004.

IPv6.kr DNS Deployment Plan Feb, 2004 Seung-hoon Lee & Billy Cheon IP Address Management Team Korea Network Information Center.

APNIC update ARIN XX 17 October 2007 Srinivas Chendi.

IPv6 Activities and Update in Thailand Sinchai Kamolphiwong IPv6 Forum Thailand IPv6 WG, UniNet NGI.

1 First EMRAS II Technical Meeting IAEA Headquarters, Vienna, 19–23 January 2009.

IPv6 and.HK Ben Lee HKIRC 01 March Agenda 1. Why IPv6 for.hk 2. Roadmap of IPv6 deployment 3. Current status 4. Considerations 5. Further work.

Benjamin Banneker Charter Academy of Technology Making AYP Benjamin Banneker Charter Academy of Technology Making AYP.

Addition 1’s to 20.

25 seconds left…...

Doubles Facts Doubles with Pictures Doubles without Pictures Pictures Only.

Total Operating Expenses. 2009/2010 Operating Expenses by Function Reporting reorganized in 2010, only 2009 results restated in the reorganized form.

We will resume in: 25 Minutes.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.

Unit Rate $45 for 5 hours. Unit Rate $45 for 5 hours $45 5 H.

Mirjam Kühne 1 RIPE 34, September 1999 RIPE NCC Status RIPE NCC Staff presented by Mirjam Kühne.

(Director of Internet Technology Team, KISA)

Ji-Young Lee IP policy & management team Korea Internet & Security Agency.

Capacity Development Workshop on Public Information Management System and Policy in Korea on cyber attacks Jeong Min, Lee KISA.

1 Young-Sun La NIDA (National Internet Development Agency ).kr DNS Monitoring System Overview.

Jeong, Hyun-Cheol. 2 Contents DDoS Attacks in Korea 1 1 Countermeasures against DDoS Attacks in Korea Countermeasures against DDoS Attacks in.

7.7 DDoS Attack Timeline 1 st Attack Date : ’ :00 ~ ’ :00, ’ :00 ~ ’ :00 Target : (US) White House + 4 web sites (US)

KT's IPv6 status and trial service Future Technology Lab Dongjin Kwak, Jaehwa Lee Meeting 2008 at NZ.

November, 2005 IPv6 DNS Service Deployment in Korea Dr. Sir, Jae-Chul

7.7 DDoS Attack Timeline 1 st Attack Date : ’ :00 ~ ’ :00, ’ :00 ~ ’ :00 Target : (US) White House + 4 web sites (US)

High Performance Research Network Dept. / Supercomputing Center 1 DDoS Detection and Response System NetWRAP : Running on KREONET Yoonjoo Kwon

Harness Your Internet Activity. Random Subdomain Attacks Plaguing the Internet.

Page 2 Biggest DDoS attack in history slows Internet, breaks record at 300 Gbps 'Biggest cyber-attack in history' slows down internet worldwide after.

DNS Operation And Security Protection

Estimating Angles.

Presentation transcript:

Agenda 1. KISA(Korea Internet & Security Agency of Korea) 2. Background & Case of DDoS Attack in Korea 3..kr DNS DDoS Protection Project Q & A

1. KISA(Korea Internet & Security Agency of Korea)  KISA is a government agency of Korea  Merged three Agency in to one in July 2009 KISA, NIDA, KIICA  Main roll Internet address resource management Internet business development Internet Security & Protection (KrCERT) International Internet Relation & Out Reach

2. Case of DDoS attack in Korea  Non targeted 1/25, 2001 Major ISP has been attacked  Targeted for Money Online game Item trade site Home stock trading system Internet Banking system  Targeted to Government & Major ISP (7.7) 12~14 Government Website being attacked Including major Internet Portal site & banking

2. Case of DDoS attack in Korea 7.7 DDoS Attack overview  Attack duration 7 th ~ 10 th of July Estimation of 180,000 Zombie PC were used  7.7 DDoS Attack specification Per one Zombie PC : 103 pps, 18.5Kbyte/sec Http Get Flooding : 20 pps, 12Kbyte/sec Http(TCP 80) Flooding : 40 pps, 3.6Kbyte/sec UDP 80 Flooding : 20 pps, 1.4Kbyte/sec ICMP Flooding : 23 pps, 1.5Kbyte/sec

2. Case of DDoS attack in Korea  kr DNS Query per day (Millions)

3..kr DNS DDoS Protection Project 2010 B, Seoul (KT) F, Seoul (Hanaro) E, Daejeon (KISTI) G Mirror, Frankfurt (DENIC) C, Anyang (Dacom) D Mirror, Red Wood (ISC) D, Seoul (KINX) G Mirror, Dulles (VeriSign) E Mirror, Beijing (CNNIC) G, Seoul (KISA) 20Gbps E Mirror, São Paulo (Registro.br) D Mirror, Singapore (SGNIC) SUPPORTS IPv6, IPv4 IPv4 Only Deploy 3 more Anycast site in total to be 14 sites X 2 D,E,G Seoul

Thank you Q & A Han Sang Lee