An Introduction to the Difference Between DDoS Attacks and CC Attacks

So what exactly is the principle of DDoS attacks?DDoS full name: Distributed Denial of ServiceIn the three elements of information security, confidentiality , ...

Sep 22,2023 | SANDY

So what exactly is the principle of DDoS attacks?

DDoS full name: Distributed Denial of Service

In the three elements of information security, "confidentiality", "integrity" and "availability",anti DDOS distributed denial of service attacks attack the object of the " Availability". This attack mode utilizes the network service function defects of the target system or directly consumes the system resources of the target system, so that the target system is unable to provide normal services.

Denial of service attack has not been reasonably solved and remains a worldwide problem. The reason is caused by the security flaws of the network protocol itself, so denial-of-service attacks have become the ultimate means for attackers.virtual Machine cloud An attacker's denial-of-service attack actually causes the server to achieve two effects.

One is to force the server's buffer to be full and not to receive new requests;

The second is to use IP spoofing to force the server to reset the legitimate user's connection, affecting the legitimate user's connection.

So what is the principle of CC attacks,vpshosting we often hear people say, receiving D single, CC single, CC is not also a denial of service attack? What is the difference between the two and DDOS? Many people can not tell the difference between DDoS attacks and CC attacks.

CC attacks are known as Challenge Collapsar because the old security device that prevents DDoS attacks is called a black hole. As the name implies, a challenge to a black hole means that the black hole cannot cope with such an attack. The new generation of anti-DDoS appliances has been rebranded as ADS (Anti-DoS System) and is essentially perfect against CC attacks.

The principle of CC attack is to simulate multiple users accessing the dynamic pages of the target website through a proxy server or a large number of broilers, creating a large number of background database query actions, consuming the target's CPU resources and causing a denial of service. Unlike DDoS, CC can use a hardware firewall to filter the attack, and the request for CC attack is itself a normal request. We all know that a website has both static and dynamic pages, and dynamic pages need to interact with the background database. For example, some forum users need to log in to the database to query your level and permissions, messages need to query the permissions and synchronization of data, consuming a lot of CPU resources, resulting in a static page can be opened, but the need to interact with the database of the dynamic page to open the phenomenon of slow or can not be opened. Compared with the first two implementations, this attack is relatively complex, but the defense is much simpler. Companies that provide services can defend themselves against general CC attacks by minimizing the use of dynamic pages and making some operations provide CAPTCHAs.

You can see the difference between DDoS and CC. DDoS attacks attack WEB servers, while CC attacks are WEB page attacks. Technically speaking, one is the WEB layer of distributed denial of service attack attack (dDoS), and one is the WEB application layer of distributed denial of service attack attack (CC), the network layer is the use of puppet machine traffic to attack the target website's server, targeting the more primitive things to attack, the server crashes, then the website running on the server must not be able to access normally. The application layer is what we users see, for example, web pages, CC attacks are attacks against web pages, CC attacks itself is a normal request, the normal request for dynamic web pages also interacts with the database, when this "normal request" reaches a certain level, the server will not respond and crash.

Distributed Denial of Service CC attacks DDoS