Modern methods of preventing DDoS attacks and protecting web servers
- Authors: Kozyreva N.I.1, Muhtulov M.O.1, Ershov S.A.1, Novoseltseva S.V.1, Akhmadullin D.A.1
-
Affiliations:
- Issue: No 2 (2025)
- Pages: 190-203
- Section: Articles
- URL: https://journal-vniispk.ru/2454-0714/article/view/359380
- DOI: https://doi.org/10.7256/2454-0714.2025.2.73667
- EDN: https://elibrary.ru/BOUTCT
- ID: 359380
Cite item
Full Text
Abstract
The object of the study is modern methods and technologies for protecting web servers from distributed denial of service (DDoS) attacks. The subject of the research covers current strategies for preventing and mitigating DDoS threats, including a detailed classification of attacks by types and vectors of impact. Special attention is paid to the mechanisms of DDoS attack effects on information systems, addressing both the technical aspects of operational disruptions and their consequences for business processes. The field of study analyzes modern technological protection solutions: Anycast routing, rate limiting, behavioral analysis systems for network traffic, and CAPTCHA mechanisms. Additionally, the integration of innovative approaches with traditional cybersecurity tools—such as firewalls, intrusion prevention systems (IPS), and protective proxy servers—is explored. The relevance of the research is determined by the rapid digitization and exponential growth in the complexity of cyberattacks, making the issue of DDoS protection critically important for ensuring the resilience of web infrastructures. The methodology includes an analysis of DDoS attacks at the network, transport, and application levels, assessing their impact on IT systems. Modern protective technologies are examined, including anomaly detection systems, load balancing, ML traffic filtering, and cloud solutions. Special attention is given to the adaptability and scalability of protection. The scientific novelty of the work lies in a comprehensive analysis of the economic and technical aspects of countering DDoS threats, including an assessment of the cost and effectiveness of various solutions for businesses of different scales. The research offers practical recommendations for building multi-layered protection that combines innovative approaches (machine learning, cloud services) with proven methods (firewalls, IPS). An analysis of real cases demonstrates the effectiveness of adaptive strategies against modern complex attacks. The conclusions emphasize the need for a proactive approach to security that considers both technological and organizational protective measures. The results obtained have practical value for cybersecurity specialists, system administrators, and developers of protective solutions, providing them with a methodological basis for creating DDoS-resistant web infrastructures. The work also outlines promising directions for further research in the field of intelligent detection and neutralization systems for attacks.
About the authors
Nadezhda Ivanovna Kozyreva
Email: n.kozyreva@psuti.ru
Mihail Olegovich Muhtulov
Email: mixa.1204@inbox.ru
ORCID iD: 0009-0009-5985-3247
Sergei Aleksandrovich Ershov
Email: vizionera8@gmail.com
Sofiya Vladimirovna Novoseltseva
Email: sunny.tea.with.lilac@gmail.com
Dinar Ayratovich Akhmadullin
Email: dinarnevashno@yandex.ru
References
Абрамов А. Г. Защита от DDoS-атак своими руками: оперативные разработка и внедрение сервиса в Национальной исследовательской компьютерной сети России // Программные продукты и системы. 2022. № 4. doi: 10.15827/0236-235X.140.572-582 EDN: OGJSLQ. Аманжолов О. М. Исследование методов и средств обнаружения DDoS-атак // Молодой ученый. 2023. № 50 (497). С. 5-8. URL: https://moluch.ru/archive/497/109243/ (дата обращения: 18.03.2025). EDN: XIACUA. Орехов А. В., Орехов А. А. Автоматическое обнаружение аномалий сетевого трафика при DDoS-атаках // Вестник Санкт-Петербургского университета. Прикладная математика. Информатика. Процессы управления. 2023. Т. 19. Вып. 2. С. 251-263. doi: 10.21638/11701/spbu10.2023.210 EDN: XYNCXN. Унру П. П., Обухов С. А., Черемухин Д. Н. Меры по защите инфокоммуникационных систем от DDoS-атак с усилением // Молодежь и наука: актуальные проблемы фундаментальных и прикладных исследований. 2022. Ч. 1. С. 1-497. doi: 10.17084/978-5-7765-1511-8-2022 EDN: OCZGSD. Kangkan Talukdar, Debojit Boro. Slowloris Attack Detection Using Adaptive Timeout-Based Approach // The ISC Int'l Journal of Information Security. 2024. № 1. С. 79-92. URL: https://www.isecure-journal.com/article_183600_e06eaaffd81aef753b956e80b513f82b.pdf (дата обращения: 10.03.2025). Верещагин К. В. Защита корпоративных сетей от DDoS-атак: современные методы и тенденции // Научный лидер. 2023. № 47 (145). С. 12-15. URL: https://scilead.ru/media/journal_pdf145.pdf#page=12 (дата обращения: 10.03.2025). EDN: CSBAGF. Разработка REST-серверов на Go. Часть 1: стандартная библиотека [Электронный ресурс]. URL: https://habr.com/ru/companies/ruvds/articles/559816/. Xu A. Rate Limiting Fundamentals // ByteByteGo Newsletter. 2023 [Электронный ресурс]. URL: https://blog.bytebytego.com/p/rate-limiting-fundamentals (дата обращения: 18.03.2025). What is Fail2Ban with Setup & Configuration? (Detailed Guide) [Электронный ресурс]. URL: https://runcloud.io/blog/what-is-fail2ban (дата обращения: 18.03.2025). What Is a WAF? | Web Application Firewall Explained [Электронный ресурс]. URL: https://www.paloaltonetworks.com/cyberpedia/what-is-a-web-application-firewall (дата обращения: 18.03.2025). Tawde S. What is Cloudflare? // EducbaBlog. 2023 [Электронный ресурс]. URL: https://www.educba.com/what-is-cloudflare/ (дата обращения: 18.03.2025). Dheer P. Understanding Google Cloud Armor: Protect against denial of service and web attacks // TestPrepTraining. 2020 [Электронный ресурс]. URL: https://www.testpreptraining.com/blog/understanding-google-cloud-armor-protect-against-denial-of-service-and-web-attacks/.
Supplementary files
