The impact analysis and mitigation of DDoS attack on local government electronic procurement service (LPSE)

摘要

The Internet nowadays has become important to current society; it has changed the way of communication and business models, The Electronic Procurement Services to government agencies which is called Layanan Pengadaan Secara Elektronik (LPSE) has become a very important part for central and local government agencies. LPSE for an agency can be termed as one of the most important assets in the process of regional development. As one of the important assets, LPSE must be protected to ensure continuity of services as well as to minimize the risk of service interruption. With the increase of sophisticated information systems and technology, the threat will also become more sophisticated. DDoS attacks are one of the most threat to the government procurement service. In this paper, we evaluated the impact of DDoS attacks on the existing network infrastructure of government procurement service and also evaluates the existing network defense mechanisms such firewall router and web server. We also compared the implementation of Intrusion Detection system, firewall server based and honeypot in the network to mitigate DDoS Attacks. During UDP Flood the results showed that on the existing network infrastructure, CPU usage of integrated firewall reaching 100 % and at 500 requests to the LPSE web server, there were only 30 requests that could be processed. Comparing to new network topology using Firewall Server Based, showed only 15,79 % of CPU usage of Firewall. Furthermore, LPSE web server response times took only 1,10 ms at 500 requests.