Application Layer Attacks
DDoS attacks historically attempted to cause issues with volumetric network flows in hopes of creating service disruption, according to Ron Winward, security evangelist at Mahwah, N.J.-based Radware.
As recently as two or three years ago, networks were almost entirely in the data center and one gigabit uplinks in the data center meant that infrastructure could be easily filled by using volumetric attacks, Winward said. But given the extra capacity provided by cloud-based services, Winward said attackers have needed to get creative in how they go after businesses.
As a result, Winward said these application layer DDoS attacks have overtaken network-based attacks for the first time. That's because an infrastructure-focused approach dedicated to filling up internet capacity is simply less effective today than disrupting applications themselves, according to Winward.