DDoS attacks bolster cloud website optimiser
- — 28 June, 2011 12:22
Enterprise product in the making and ‘loved’ by disbanded hacker group LulzSec.
The constant and very real threat of distributed denial of service (DDoS) attacks aimed at headline grabbing “hacker” groups, such as Lulz Security and Anonymous, have helped one tech start-up pick up new business.
Content distribution network CloudFlare was launched in 2010 with a simple promise to optimise website performance. Instead of traffic hitting a website's server directly, it is routed through CloudFlare's global network of edge nodes. At the beginning of 2011 it supported just over 20,000 websites, but six months later it has clocked up 40,000, according to June figures, according to Paul Mutton of UK security firm, Netcraft.
One of the features that has impressed users, according to CloudFlare,is the protection it provides websites suffering a DDoS attack.
“If there is a big change, then our system automatically starts to investigate whether it is legitimate traffic or an attack,” CloudFlare co-founder, Michelle Zatlyn explained on the company's blog.
If it is not legitimate traffic, then the system automatically starts to learn and starts to stop the new threats at our edge nodes, before they hit the site's server.”
High profile customers, such as the reportedly disbanding group, Lulz Security, used the service to bolster lulzsecurity.com. The group recently declared their “love” for it to their 280,000 followers on Twitter.
However, as a measure to counter a DDoS attack, it has its limitations, according to NetCraft's Mutton. Fellow hacker collective Anonymous previously used CloudFlare to support the AnonNews website, but it was booted off after a recent attack affected CloudFlare’s network.
Part of the service’s appeal is the apparent ease with which customers can sign up.CloudFlareclaims it takes just five minutes and simply requires that a customer change their domain’s DNS settings, without requiring additional hardware or software.
The company is currently seeking interest from businesses for an enterprise-grade service that it plans to launch soon.
MORE IN Data Protection