Posted by: kurtsh | February 3, 2017

WHITEPAPER: Defending Office 365 Against Denial-of-Service Attacks

imageAzure Active Directory & Office 365 as a whole has a massive, globally-distributed model leverage Microsoft’s cloud footprint.

As a result, Microsoft is able to absorb attacks across a very large surface area, mitigating denial-of-service attacks against authentication – keeping customers operational, even during DDoS attacks.

As a global organization with a significant Internet presence and several prominent Internet properties, Microsoft is a large and common target for hackers and other malicious individuals.  In fact, for the last several years, Microsoft has been continuously and persistently under some form of cyber-attack.  At just about any given time, at least one of Microsoft’s Internet properties is experiencing some form of denial of service traffic.  Without reliable and persistent mitigation systems that can defend against these attacks, Microsoft’s services would be offline.

This document talks generally about different types of attacks and how Microsoft defends Office 365 and its network against those attacks. Office 365 uses defense-in-depth security principles to protect against internal and external risks.  The network–the communication layer between clients and Office 365–is one of the biggest targets of malicious attacks.

To read more, download the paper below:


%d bloggers like this: