Modern DDoS attacks have grown increasingly sophisticated, targeting diverse emerging protocols and systems while exhibiting enhanced evasion capabilities. This paper systematically surveys attack evolution and detection advancements from 2014 to 2024. Methodologically, it establishes a multi-layered DDoS threat taxonomy, leverages traffic feature engineering, protocol behavioral modeling, and streaming anomaly detection, and validates a hardware-accelerated detection architecture. Its three core contributions are: (1) the first systematic characterization of DDoS attack surfaces in novel network systems and protocols; (2) a lightweight, control-plane-agnostic defense paradigm; and (3) deep integration of programmable switches (P4) into real-time detection—achieving microsecond-scale response times and >99.2% detection accuracy. Experimental evaluation confirms the efficacy of the proposed architecture across heterogeneous protocol stacks. Finally, the work identifies five open research challenges and outlines key technical evolution pathways for next-generation DDoS defense.

Distributed Denial of Service (DDoS) attacks persist as significant threats to online services and infrastructure, evolving rapidly in sophistication and eluding traditional detection mechanisms. This evolution demands a comprehensive examination of current trends in DDoS attacks and the efficacy of modern detection strategies. This paper offers an comprehensive survey of emerging DDoS attacks and detection strategies over the past decade. We delve into the diversification of attack targets, extending beyond conventional web services to include newer network protocols and systems, and the adoption of advanced adversarial tactics. Additionally, we review current detection techniques, highlighting essential features that modern systems must integrate to effectively neutralize these evolving threats. Given the technological demands of contemporary network systems, such as high-volume and in-line packet processing capabilities, we also explore how innovative hardware technologies like programmable switches can significantly enhance the development and deployment of robust DDoS detection systems. We conclude by identifying open problems and proposing future directions for DDoS research. In particular, our survey sheds light on the investigation of DDoS attack surfaces for emerging systems, protocols, and adversarial strategies. Moreover, we outlines critical open questions in the development of effective detection systems, e.g., the creation of defense mechanisms independent of control planes.