olemus
sihtmärgi ummistusrünne DNS-nimeteenuse kaudu,
põhineb protokolli asümmeetrial:
ründaja võltsib DNS-päringu lähteaadressiks
sihtarvuti aadressi
=
a form of denial-of-service attack where attackers use open DNS servers (and DNS request source address spoofing) to amplify their attack traffic

ülevaateid
https://cyberhoot.com/cybrary/dns-reflection-attack/

https://condor.depaul.edu/jkristof/slides/dns-ctinetseminar.pdf

https://www.linkedin.com/pulse/survey-dns-reflection-amplification-attacks-defending-patel?trk=related_artice_A%20Survey%20on%20DNS%20Reflection%20Amplification%20Attacks%20and%20Defending%20Mechanisms_article-card_title

tõrje
https://www.nlnetlabs.nl/downloads/publications/report-rrl-dekoning-rozekrans.pdf