Distributed denial of service:
- Prevention refers to the collective tools, processes and methodologies that enable a network, information system or IT environment to be protected from DDoS attacks and intrusions. It is a security and hardening technique that ensures that optimal or normal computing operations continue even under a DDoS attack.
- Prevention typically requires first analyzing the underlying system, network or environment for known and unknown security vulnerabilities that are targeted in a DDoS attack. This is done through security scanning or analysis software. Once these vulnerabilities are identified, a systematic plan is implemented to mitigate and remove all such loopholes. The system later on may be tested for a simulated DDoS attack to see how it responds and to determine whether all vulnerabilities have been eliminated or not. Live DDoS attacks are usually prevented by reconfiguring DNS and routing traffic to a different location, usually with a traffic scrubbing network or facility.