QI-ANXIN Research Institute Expose RangeAmp Attack: Turning CDN into DDOS Cannon
Another paper published by QI-ANXIN Technology Research Institute and cooperative academies has just won the best Paper Awards out of three nominators in DSN 2020 Conference.
The paper presents a novel class of HTTP amplification attack, Range-based Amplification (RangeAmp) Attacks. It allows attackers to massively exhaust not only the outgoing bandwidth of the origin servers deployed behind CDNs, but also the bandwidth of CDN surrogate nodes. Research team further disclosed all security issues to affected CDN vendors and received positive feedback from all vendors.
Click the link below to read: