Distributed Denial of Service Prevention

What Does Distributed Denial of Service Prevention Mean?

Distributed denial of service (DDoS) prevention refers to the collective tools, processes and methodologies that enable a network, information system or IT environment to be protected from DDoS attacks and intrusions.


It is a security and hardening technique that ensures that optimal or normal computing operations continue even under a DDoS attack.

Techopedia Explains Distributed Denial of Service Prevention

DDoS prevention typically requires first analyzing the underlying system, network or environment for known and unknown security vulnerabilities that are targeted in a DDoS attack. This is done through security scanning or analysis software.

Once these vulnerabilities are identified, a systematic plan is implemented to mitigate and remove all such loopholes. The system later on may be tested for a simulated DDoS attack to see how it responds and to determine whether all vulnerabilities have been eliminated or not. Live DDoS attacks are usually prevented by reconfiguring DNS and routing traffic to a different location, usually with a traffic scrubbing network or facility.


Related Terms

Margaret Rouse
Technology Expert

Margaret is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical business audience. Over the past twenty years, her IT definitions have been published by Que in an encyclopedia of technology terms and cited in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine, and Discovery Magazine. She joined Techopedia in 2011. Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages.