DOD seeks defense against denial-of-service attacks

The Defense Information Systems Agency wants info on commercially available security products

The Defense Information Systems Agency wants commercial products that could help network administrators detect and react to distributed-denial-of-service (DDOS) attacks, according to a request for information posted today.

In such attacks, an individual or group attempts to bring down a Web site by overwhelming it with traffic.

The agency is interested in solutions that could give administrators a clear and timely picture of what is happening on their networks, alert them in the event of suspicious activity and provide options for mitigating attacks, the notice states.

“The goal of this solution is to detect and mitigate all DDOS attempts to disrupt [Defense Department] network communications and to detect internal assets displaying anomalous behavior across the Internet-to-NIPRnet boundary,” the notice states.

In some cases, hackers use malicious code to hijack the computers of unsuspecting users and turn them into zombie machines with instructions to repeatedly send data packets to targeted Web servers to overwhelm them and knock the sites off-line.

Last week, hackers used that type of attack on government and private-sector Web sites in the United States and South Korea to varying degrees of success.

According to a report in the Wall Street Journal last week, DOD officials confirmed that their networks had been struck. But the officials said the intrusions were detected quickly and did no real damage. Other U.S. government Web sites reportedly didn’t fare as well.

Meanwhile, the Associated Press reported last week that the Treasury Department, Secret Service, Federal Trade Commission and Transportation Department Web sites were all down at certain points. The article cited officials inside and outside the government.

In the RFI, DISA said it’s interested in a tool that can report DDOS events within five minutes of the start of the attack. Officials also want the solution to monitor inbound and outbound traffic at 11 worldwide Internet-to-NIPRnet access points.

The RFI asks vendors to provide details on proposed solutions’ capabilities for detection, mitigation, monitoring, logging, reporting and alerting. DISA also wants information on proposed systems’ security, administration and architectures, along with cost and schedule estimates.

About the Author

Ben Bain is a reporter for Federal Computer Week.


  • Congress
    U.S. Capitol (Photo by M DOGAN / Shutterstock)

    Funding bill clears Congress, heads for president's desk

    The $1.3 trillion spending package passed the House of Representatives on March 22 and the Senate in the early hours of March 23. President Trump is expected to sign the bill, securing government funding for the remainder of fiscal year 2018.

  • 2018 Fed 100

    The 2018 Federal 100

    This year's Fed 100 winners show just how much committed and talented individuals can accomplish in federal IT. Read their profiles to learn more!

  • Census
    How tech can save money for 2020 census

    Trump campaign taps census question as a fund-raising tool

    A fundraising email for the Trump-Pence reelection campaign is trying to get supporters behind a controversial change to the census -- asking respondents whether or not they are U.S. citizens.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.