English

Multi Layer Protection Against Low Rate DDoS Attacks in Containerized Systems

Cryptography and Security 2026-02-13 v1 Networking and Internet Architecture

Abstract

Low rate Distributed Denial of Service DDoS attacks have emerged as a major threat to containerized cloud infrastructures. Due to their low traffic volumes, these attacks can be difficult to detect and mitigate, potentially causing serious harm to internet applications. This work proposes a DDoS mitigation system that effectively defends against low rate DDoS attacks in containerized environments using a multi layered defense strategy. The solution integrates a Web Application Firewall WAF, rate limiting, dynamic blacklisting, TCP and UDP header analysis, and zero trust principles to detect and block malicious traffic at different stages of the attack life cycle. By applying zero trust principles, the system ensures that each data packet is carefully inspected before granting access, improving overall security and resilience. Additionally, the systems integration with Docker orchestration facilitates deployment and management in containerized settings.

Keywords

Cite

@article{arxiv.2602.11407,
  title  = {Multi Layer Protection Against Low Rate DDoS Attacks in Containerized Systems},
  author = {Ahmad Fareed and Bilal Al Habib and Anne Pepita Francis},
  journal= {arXiv preprint arXiv:2602.11407},
  year   = {2026}
}
R2 v1 2026-07-01T10:32:46.105Z