In today’s Priority Queue podcast I chat with Andrew Mortensen about Distributed Denial Of Service Open Threat Signaling, or DOTS, an active IETF working group.

DOTS enables disparate DDoS products and services to interact so they can request, coordinate, and terminate mitigation efforts.

We discuss the rationale for DOTS, examine use cases, and look at the architecture that enables communication and coordination. We also look at how DOTS relates to, and differs from, BGP Flowspec.

Andrew is Principal Architect at Arbor Networks, the security division of NetScout.

This episode was recorded live at the 102nd meeting of the Internet Engineering Task Force in Montreal.

Show Links:

DDoS Open Threat Signaling (dots) – IETF

Distributed Denial of Service (DDoS) Open Threat Signaling Requirements – IETF

Distributed Denial of Service (DDoS) Open Threat Signaling Architecture – IETF

PQ Show 78: BGP Flowspec For DoS Mitigation – Packet Pushers