I think Patrik's suggestion does just that - it uses billing classes and
restricts movement from one class to another so that it can't happen too
fast. This means that a user will be warned well in advance before
receiving any astronomical bills. I don't think an attacker will find it
worthwhile to spew traffic at someone for months just to increase his/her
monthly bill and if they should, there will be plenty of time and
opportunity to apprehend the originator and/or filter/block the traffic.
On Fri, 24 Jan 2003, Jonas Stenling wrote:
> On Fri, 24 Jan 2003, Patrik Fältström wrote:
> > Or something. A charging scheme where the majority of the users get
> > _lower_ price, while the users which use too much pay more. If the ISP
> > loose these few customers because they want fixed price...tough luck.
> > The ISP gain more by not having to transfer the bits for those users.
> Yes, but what about denial of service attacks aimed at increasing the bill
> for a specific customer? How do you solve that problem?
> Visit: http://www.stenling.nu/contact.html for contact info.