On Aug 1, 2012, at 11:37 AM, Wolfgang Nagele wrote:
It's always interesting to me that Arbor seems to be the only one who "routinely" sees those in the wild. One could almost think that there is a business driver somewhere there ...
We aren't the only ones who see these - and in fact, we see attacks much larger than this, but we typically publicly report what survey respondents (i.e., network operators themselves) report in our annual Worldwide Infrastructure Security Report. Large ISPs around the world see these attacks, as they and their customers are on the sending, receiving, or transiting side of the attack traffic in question.
In fact, even though we saw several attacks larger than 100gb/sec last year, we only reported the largest attack which survey respondents reported, which was 65gb/sec - down from 100gb/sec in the 2010 report.
Arbor has an excellent reputation in the global operational security community. We are well-known for our community-sourced research and public educational efforts centered around opsec BCPs. We have no need to exaggerate the threat to availability represented by DDoS attacks, as those who are affected by them can attest - and as a quick search on 'DDoS' via any mainstream search engine will demonstrate.
-----------------------------------------------------------------------
Roland Dobbins