Results -9 to 0 of 101

Threaded View

  1. 09-29-2024 04:48 AM #32
    Havenchild
    Player
    Havenchild's Avatar
    Join Date
    Aug 2013
    Location
    Gridania
    Posts
    990
    Character
    Avalen Koma
    World
    Gilgamesh
    Main Class
    Arcanist Lv 100
    Quote Originally Posted by AlienDiplomat View Post
    A VPN only changes YOUR IP and route to the authentication server. By putting authentication in the cloud, there is no single physical server location to target via DDOS. So all using a VPN would accomplish is changing the route and specific entry point on the cloud network that client used to authenticate.

    This would vastly multiply the cost of running a bot net capable of any significant disruption as it would need to simultaneously track and attack all points of entry on the cloud.

    Further, automatic load balancing on the cloud network would offload further log-in attempts to a bogged network entry point to another route creating a spill-over effect that would dilute any concentrated attack over the larger network. These cloud providers are HUGE. The likelihood of some no-life pimple-faced losers having enough of mommy's credit card to afford to compete with such a provider by running a large enough attack network would be significantly reduced.

    EDIT: Also using a VPN to mask your IP doesn't change your SE user account. So banned accounts would remain banned regardless of what IP they tried to use them on.



    It would eliminate static routes that allow attackers to isolate specific physical network segments to attack as much as it would avoid targeting SE servers. So they wouldn't be able to hit weak points in a physical route knocking out service to entire regions cut off by that failure point. The cloud network would simply offload encrypted authentication requests to another access point on the network and automatically balance the load.
    You are correct in that this could be a solution mitigated through load balancing in something like AWS.

    There are two specific issues though.

    1) Going this route will cost SE a fat sum of cash. Likely approaching millions per month to create load balancing for their servers.

    2) Queue times go up for everyone on the regular. During a DDOS event, you may even get a complete baloon of the queue ala Endwalker.

    A special reasoning -

    Cloud delay. Im not entirely sure how authentication works in XIV but if the client somewhere checks in with the server even after you log in (to maintain connection), you will likely create client/mechanic delay every check in as the data now passes through this cloud environment.

    Lastly, when there isn't an attack, SE is just bleeding money for no reason. Probably why they haven't bothered going this route. Little gains, roughly the same problems.
    (1)
    Last edited by Havenchild; 09-29-2024 at 05:07 AM.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Tags for this Thread