Reducing DDoS Attacks impact using a Hybrid Cloud-Based Firewalling Architecture

A Distributed Denial-of-Service attack is an attempt to prevent legitimate users from accessing information or services. In fact, it is a battle of resources between the defender and the attacker. Hence, in order to deal with the denial of services, the proposed mitigation tools are mainly based on the philosophy of Cloud computing which relies on sharing resources. In fact, it offers numerous resources, with high availability and performances. This concept provides us with a new way to cope with DDoS attacks. Cloud computing offered IT resources as services which are more affordable, flexible and attractive to business. Therefore, we present a DDoS attack mitigation service supported by an efficient and hybrid cloud based architecture. It uses the flexibility and the availability of the Cloud, as well as the support of traditional firewalls and intrusion detection systems, to cope with massive unanticipated volumes of traffic in order to improve their performance dynamically and on demand.