What is a DDoS attack?

From a high level, a distributed denial-of-service (DDoS) attack is like a traffic jam clogging up a highway, preventing regular traffic from arriving at its desired destination.

A DDoS attack is a malicious attempt to disrupt the normal traffic of a server, service or network by overwhelming the target or its surrounding infrastructure with a flood of internet traffic. DDoS attacks achieve effectiveness by utilizing many compromised computer systems as sources of attack traffic.

Average cost of a US data breach > USD 7 million

What are common types of DDoS attacks?

Application layer attacks

Also known as a layer 7 DDoS attack, the goal is to exhaust the resources of the victim by targeting the layer where web pages are generated on the server. The attack is then delivered to visitors in response to HTTP requests - that is, the application layer. Layer 7 attacks are challenging, because the traffic can be difficult to identify as malicious.

Protocol attacks

Protocol attacks utilize weaknesses in layer 3 and layer 4 of the ISO protocol stack to render the target inaccessible. These attacks, also known as a state-exhaustion attacks, cause a service disruption by consuming all available 'state table' capacity of web application servers, or intermediate resources, such as firewalls and load balancers

Volumetric attacks

This category of attacks attempts to create congestion by consuming all available bandwidth between the target and the wider internet. Large amounts of data are sent to a target using a form of amplification, or by other means of creating massive traffic, such as requests from a botnet.

Fee waived: IBM Cloud Garage Workshop

North American and European Clients can participate in a four-hour IBM Cloud Garage Consultation free of charge with the purchase of an Enterprise plan. This workshop will offer the opportunity to solve the client's problem and determine the best solution to improve their security, performance, and reliability via IBM Cloud Internet Services.

The app protection you need

IBM Cloud™ Internet Services is a simple set of edge network services for customers looking to secure their internet-facing applications from DDoS attacks, data theft and bot attacks, as well as for those customers needing to optimize their web applications, or ensure global responsiveness and the ongoing availability of their internet-facing applications.

→ Read the blog

Key features

Get unmetered distributed DDoS mitigation protection to keep your business secure against the largest known DDoS attacks, with no additional surge pricing costs.

Get enterprise-class protection with a cloud-based web application firewall (WAF) to fight web attacks in seconds, without slowing down your website.

Reduce service disruptions with global traffic load balancing, geographic routing, server health checks and failover, ensuring the continuous availability of your critical resources.

Customer Success Stories


No compromise

Organizations rely on mission-critical internet applications to do business every day. Achieving the right security posture without sacrificing performance is a challenge. IBM Cloud Internet Services brings market-leading security and performance to internet applications.

Global reach

Available worldwide on the IBM Cloud platform and Cloudflare’s network of global data centers across 58 countries, IBM Cloud Internet Services is engineered to deliver the highest levels of security, with no reduction in performance.

Predictive pricing

IBM Cloud Internet Services’ flat billing model means you know exactly what you’re paying from month to month.

Get started

Ready to begin? With our portal and API, a faster and more secure internet is just clicks away.