images
Blog

CPDoS Attack can Poison CDNs to Deliver Error Pages Instead of Legitimate Sites

Francesco Altomare, Senior Sales Engineer @ GlobalDots
25.10.2019
image 1 Min read
Content Delivery Network (CDN)

Two academics from the Technical University of Cologne (TH Koln) have disclosed this week a new type of web attack that can poison content delivery networks (CDNs) into caching and then serving error pages instead of legitimate websites.

cpdos
Image Source

The new attack has been named CPDoS (Cache-Poisoned Denial-of-Service), has three variants, and has been deemed practical in the real world (unlike most other web cache attacks).

HOW CPDOS ATTACKS WORK

CPDoS attacks are aimed at two components of the modern web — (1) web servers and (2) content delivery networks.

Web servers store the original website and its content, while CDNs store a cached copy of the website that is only refreshed at certain time intervals.

Despite their simplistic role, CDNs are a crucial part of the modern internet, as they can alleviate the load on web servers. Instead of a web server computing the same user request over and over again, a CDN can provide some of the incoming users with a copy of the website, until the CDN refreshes itself with a new version.

CDNs are widey used. Any attack on a CDN system can have devastating consequences on a website’s availability, and, hence, it’s profitability.

Read more: ZDnet.com

 

Comments

0 comments

There’s more to see

Old Dogs, New Tricks: Innovating with CDNs
Content Delivery Network (CDN)
Dror Arie, Senior Solutions Architect @ GlobalDots 20.04.22

Today’s digital businesses with global customers cannot afford slow page loads and applications caused by physical distance and latency issues. Page load speeds can have a significant effect on customer acquisition and retention. Walmart discovered that a 1% increase in page load time results in a 2% increase in conversion rates. So businesses are using […]

Read more
Automatically trigger CDN purge on S3 change
Content Delivery Network (CDN)
Shalom Carmel, CIO @ GlobalDots 19.04.22

A CDN requires an origin server, which can be a S3 bucket. s3-trigger-purge-cdn are python scripts that run as Lambda functions, and are triggered by file uploads to the bucket. Once triggered, the Lambda function will attempt to purge the old file from the CDN cache. Currently supported CDN vendors: Akamai Cloudflare Edgecast Fastly Highwinds […]

Read more
Single vs. Multi CDN: Pros, Cons, Technical & Operational Considerations
Content Delivery Network (CDN)
Miguel Fersen, Senior Cloud Consultant @ GlobalDots 18.04.22

CDNs are crucial for user experience and your reputation Being around for a long time, CDNs are now an essential part of modern Internet service. A CDN helps a content owner deliver content at high speeds. This is done as a distributed system, where different servers are deployed in different datacenters worldwide and share the […]

Read more
Unlock Your Cloud Potential
Schedule a call with our experts. Discover new technology and get recommendations to improve your performance.
Contact us