Operationalizing ISP cooperation during DDoS attacks

Speaker Nimrod Levy John Schiel, John A Schiel, CenturyLink Varied career working with computers of some sort since 1985. I've programmed, been a DBA, a Unix System Admin and finally a Principal Architect concentrating on DDoS architecture, Network Security, and pentesting DSL modems. Donald Smith, Centurylink Donald Smith is a Security Architect at Centurylink and an Internet Storm Center handler (isc.sans.org). His computer career began in 1979, in the Army, on a \"portable\" analog computer. He worked for CDC, graduated from UofW with a BS/CS and received his first security certification in 1995 (CISSR). He has contributed to various computer security groups, tools, standards, trust groups, and Botnet working groups such as conficker working group. Abstract As large network DDoS attacks grow in scale, it becomes more important that ISPs be able to work together to quickly address issues in real time. We propose a framework to facilitate the operationalizing of this cooperation. One that can be tailored per entity for each's capabilities for notification, validation, and implementation.