CAPEC-590: IP Address Blocking
CAPEC版本: 3.9
更新日期: 2023-01-24
攻击模式描述
An adversary performing this type of attack drops packets destined for a target IP address. The aim is to prevent access to the service hosted at the target IP address.
前提条件
- This attack requires the ability to conduct deep packet inspection with an In-Path device that can drop the targeted traffic and/or connection.
后果影响
影响范围: Availability
技术影响: Other
说明: Blocking packets intended for a target IP address denies its availability to the user.
缓解措施
Have a large pool of backup IPs built into the application and support proxy capability in the application.
示例实例
Consider situations of information censorship for political purposes, where regimes that prevent access to specific web services.