> 13.5.2. Protection Strategies > > ALTO Provider should be cognizant of the workload at the > ALTO Server > generated by certain ALTO Queries, such as certain queries > to the Map > Service, the Map Filtering Service and the Endpoint Cost (Ranking) > Service. One way to limit Denial-of-Service attacks is to employ > access control to the ALTO Server. The ALTO Server can > also indicate > overload and reject repeated requests that can cause availability > problems.
One could also explicitly add the term "(request) rate limit"; I think that this is used e. g. to protect control plane protocols. For instance: "One way to limit Denial-of-Service attacks is to employ access control or request rate limits to the ALTO Server." There is probably no comprehensive DoS protection solution, though. Michael _______________________________________________ alto mailing list [email protected] https://www.ietf.org/mailman/listinfo/alto
