Automated Traffic And Your AWS Environment_B
-
Upload
david-dowling -
Category
Documents
-
view
203 -
download
0
Transcript of Automated Traffic And Your AWS Environment_B
![Page 1: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/1.jpg)
Automated Traffic And Your AWS Environment David Dowling June 2015 – AWS User Group Melbourne
![Page 2: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/2.jpg)
Don’t Worry! This Is Not A Sales Pitch
![Page 3: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/3.jpg)
Amazon Web Services
![Page 4: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/4.jpg)
Bot Report 2014
![Page 5: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/5.jpg)
Types of Automation
• Good Automation = CloudFormation, Auto Scaling Elastic Load Balancing and Googlebots
• Bad Automation = Site scraping, SQL Injection, fake Googlebots, DDoS bots
![Page 6: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/6.jpg)
AWS Address Space Is Frequently Scanned
![Page 7: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/7.jpg)
Googlebot Or DDoS Impersonator?
![Page 8: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/8.jpg)
So, Like, What Does This Have To Do With AWS?
• If you can reduce malicious automated traffic hitting web servers you can control expenditure and reduce noise for the Security and DevOps teams
Amazon ELB
AmazonELB
Web servers
Amazon ELB
Web servers
Scaling Group
Availability Zone 1
Availability Zone 2
![Page 9: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/9.jpg)
Quiz Time – Which Country Has The Largest Amount of Attack Traffic?
1. People’s Republic of China
2. Russia
3. One of the Stans
4. United States of America
![Page 10: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/10.jpg)
The US And Alaska?
![Page 11: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/11.jpg)
Application Denial of Service (DoS)
![Page 12: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/12.jpg)
Torshammer script
![Page 13: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/13.jpg)
Torshammer result
![Page 14: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/14.jpg)
DDoS Attacks On Sites In AWS
• GreatFire.Org gets DDoS by a Nation-state
• “Because of the number of requests we are receiving, our bandwidth costs have shot up to USD $30,000 per day”
![Page 15: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/15.jpg)
Do You Really Want A 253 Gig DDoS Attack On Your AWS Instance?
![Page 16: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/16.jpg)
Site Scraping – Why?
Media – Steal page views
E-Business – Steal ad revenue
Insurance – rate harvesting and then undercutting
Social Media – Stealing user data to create fake accounts
Transportation – systematically undercutting pricing
Government Agencies – List harvesting
![Page 17: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/17.jpg)
Lovely Faces – Aka your Facebook profile photo scraped from Facebook
![Page 18: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/18.jpg)
AWS Test Drive
https://www.imperva.com/ld/aws_testdrive.asp
![Page 19: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/19.jpg)
More Information?
• [email protected] or 0403 803 804 • AWS share a lot of great stuff on SlideShare
• www.Blog.Imperva.com
• http://www.botopedia.org/
• Verizon Data Breach Report
![Page 20: Automated Traffic And Your AWS Environment_B](https://reader035.fdocuments.in/reader035/viewer/2022062503/58f0ee101a28ab156a8b45b3/html5/thumbnails/20.jpg)