Uno, DDoS, Tres — The magic of Shuffle sharding

Root domain

DDoS

  1. Application Layer — making simple non-malicious requests that are computationally expensive for the server
  2. Protocol Layer — spoofing IP’s to keep connections open between the fake client and real server
  3. Volumetric attacks — this one is my favourite, you don’t need as many botnets but this is ideal for taking down large companies — when I say favourite I mean I am impressed by the method not the application 😆

Shuffle Sharding

Horizontal scaling

Simple Sharding

Shuffle Sharding

Some math

Some real world math

Route 53

The Route Infirma Library

Limitations

  • Shuffle sharding can be used for many different types of resources, including servers, queues, storage etc.
  • the clients need to be fault tolerant and able to retry requests
  • there needs to be a routing mechanism — so you either give each customer a DNS name (like AWS do for S3, CloudFront, Route53) or you will need a content-aware router that is capable of doing Shuffle Sharding
  • Fixed assignments in route53 — you’re stuck with the hand your dealt . If your nodes fail you won’t be moved to another shard as part of the system as that takes us back to the problem infecting a whole system

Conclusion

--

--

--

The thoughts expressed on this platform are wholly my own and in no way reflect those of my employer

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Security Due Diligence, What to expect, How to prepare

🌜ALL CHAMPIONS DON’T LOSE YOUR REWARD!🌛

How to visit the pub while retaining your privacy

{UPDATE} Island Journey Adventure Hack Free Resources Generator

Private Investors ONLY — $MGOD Claim Details

Buy my old Laptop as an redeemable NFT on Rarible :)

{UPDATE} Lucky Ninja Hack Free Resources Generator

“Practical Cryptography” Course Released

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Hamzah Abdulla

Hamzah Abdulla

The thoughts expressed on this platform are wholly my own and in no way reflect those of my employer

More from Medium

Holistic Backend/Cloud Dev

Introduction to Policy as Code

A comprehensive guide on AWS and services it provides

How to configure domain names with SSL in AWS?