tag:blogger.com,1999:blog-3155908228127841862.post2120364647921911394..comments2023-06-28T10:04:44.463-06:00Comments on The Perils of Parallel: How to Blow Up a CloudGreg Pfisterhttp://www.blogger.com/profile/12651996181651540140noreply@blogger.comBlogger6125tag:blogger.com,1999:blog-3155908228127841862.post-60970016846809140752009-08-27T20:24:53.219-06:002009-08-27T20:24:53.219-06:00@Dong - I don't personally know of uses of EDo...@Dong - I don't personally know of uses of EDoS. Google scholar can't find any. Plain Google only finds a few blog & news articles. So net, I'd say no.Greg Pfisterhttps://www.blogger.com/profile/12651996181651540140noreply@blogger.comtag:blogger.com,1999:blog-3155908228127841862.post-89206048056134564722009-08-27T12:13:35.178-06:002009-08-27T12:13:35.178-06:00Is the EDoS used in any literature?Is the EDoS used in any literature?Dong Seong Kimhttps://www.blogger.com/profile/16141460342479699776noreply@blogger.comtag:blogger.com,1999:blog-3155908228127841862.post-47164028906562159002009-07-26T07:49:56.623-06:002009-07-26T07:49:56.623-06:00All DDoSes are 'EDoSes', by definition. &...All DDoSes are 'EDoSes', by definition. 'EDoS' is a dumb, redundant name which nobody with clue uses (see my comments on Hoff's post about this). It hasn't caught on, and it won't, so you should probably stop using it, heh.<br /><br />;><br /><br />All the various attack modes you describe, and then some, are in use today and have been for years. <br /><br />You're correct in that DDoS is the big security elephant in the room nobody wants to talk about in regards to cloud computing - DDoS kills the cloud dead, totally defeats the model.<br /><br />Fortunately, there are many Best Current Practices (BCPs) at all 7 layers of the OSI model, from architecture to implementation to operations, which greatly improve the resiliency and ability of applications/infrastructure/services to withstand DDoS. Unfortunately, most organizations don't follow/implement them, so trivial DDoS attacks like the recent RoK/USA attacks end up taking down important services and having a disproportionate impact.<br /><br />The cloud model will finally force folks to implement the BCPs; however, it's going to take failure on an organization-by-organization basis for this to happen, since people seem fundamentally unable/unwilling to learn from the mitakes of others.Roland Dobbinshttps://www.blogger.com/profile/06517186494484977438noreply@blogger.comtag:blogger.com,1999:blog-3155908228127841862.post-68554560975789259652009-05-04T01:17:00.000-06:002009-05-04T01:17:00.000-06:00The "trickle" EDoS seems like a bit of a marginal ...The "trickle" EDoS seems like a bit of a marginal attack. If implemented on any business that is actually a going concern, it seems all it could do without attracting notice is raise the costs of hosting by, at most, a multiple of the "base" cost, not a magnitude.<br /><br />Are there really legit businesses that are economically viable when cloud hosted, but not when cloud hosted at 2x the cost? That seems like a fairly small group of businesses.Ryanhttps://www.blogger.com/profile/15514653089603456867noreply@blogger.comtag:blogger.com,1999:blog-3155908228127841862.post-68326153869269230402009-02-05T18:29:00.000-07:002009-02-05T18:29:00.000-07:00>I'm told it cost Derek around $300It was 1...>I'm told it cost Derek around $300<BR/>It was 100 computers for 24 hours @0.10 per hour for each computer. So, $240 dollars. A bargain...<BR/><BR/><BR/>http://open.blogs.nytimes.com/2007/11/01/self-service-prorated-super-computing-fun/Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-3155908228127841862.post-21372469704780537392009-02-03T19:23:00.000-07:002009-02-03T19:23:00.000-07:00The cloud presents all kinds of security concerns ...The cloud presents all kinds of security concerns in a new light. In fact, I think those of us following the cloud "trend" tend to think about security in terms of mapping existing threat models onto cloud architecture. Your take points out a serious threat that couldn't even exist in prior deployment models. Great point, thanks for sharing it.Unknownhttps://www.blogger.com/profile/03269943653202737821noreply@blogger.com