Cloud Computing Patterns | Design Patterns | Cloud Denial-of-Service Protection

Cloud Computing Patterns, Mechanisms > Network Security, Identity & Access Management and Trust Assurance Patterns > Cloud Denial-of-Service Protection
Home > Design Patterns > Cloud Denial-of-Service Protection

Cloud Denial-of-Service Protection (Cope, Erl)

How can cloud services be protected against denial-of-service attacks?

Cloud Denial-of-Service Protection


Cloud denial-of-service (DoS) attacks are multifaceted and prevent consumers of cloud services from accessing their cloud resources.


A cloud DoS protection service is incorporated into the security architecture to shield the cloud provider from DoS attacks.


A network DoS protection service updates the domain name service (DNS) to route all cloud provider traffic through the protection service, which filters attack traffic and routes only legitimate traffic to the cloud provider. Alternately, the cloud provider can route traffic to a DoS protection service when experiencing an attack, or create their own DoS protection service.

Cloud Denial-of-Service Protection: The DDoS mitigation service in action.

The DDoS mitigation service in action. Cloud Certified Professional (CCP) Module 7: Fundamental Cloud Security Cloud Certified Professional (CCP) Module 8: Advanced Cloud Security

This mechanism is covered in CCP Module 7: Fundamental Cloud Security and
in Module 8: Advanced Cloud Security.

For more information regarding the Cloud Certified Professional (CCP) curriculum, visit

Cloud Computing Design Patterns

The architectural model upon which this design pattern is based is further covered in:

Cloud Computing Design Patterns by Thomas Erl, Robert Cope, Amin Naserpour

(ISBN: 9780133858563, Hardcover, ~ 528 pages)

For more information about this book, visit