A good part of my MSc. Thesis was focused on investigating DoS and DDoS attacks at the application layer, and especially as it affects cloud computing infrastructure...
Apparently, the issue of DoS and DDoS attacks is something I personally call "the nemesis of Computer Networks and the Internet"... An outright solution to this nemesis would not be forthcoming in a very long time, but what would keep happening is that more ways and methods would be proposed for mitigating and greatly limiting the impact these attacks have...
Artificial Neural Networks (ANN) is a field of research that has begun to interest me in recent time, and it's an area of research that shows great promise, and so does the field of Genetic Algorithms. Especially as regards the issues of DoS and DDoS, because of the possibility of learning (by this I mean Machine Learning) and understanding mutative capabilities, which I discovered in the course of my thesis research to be a fundamental missing ingredient lacking in most solutions to this types of attacks... DoS and DDoS attacks are very creepy types of attacks, especially at the application layer (e.g SlowPOST, Slowloris, etc), because of the way they exploit vulnerabilities in various applications... Learning (Machine Learning) would make it possible for a solution to be adaptable to various networks and cloud infrastructure overtime, because adaptability is a very key requirement for solutions to such attacks...
I would gladly collaborate with you in researching a solution for such attacks in the dimension you have proferred, but that's if you don't mind...
I am thank full to your reply on the query i had posted and i will definitely be a part of your work on contrary i am in between beginner and intermediary stage of my work .
Sorry, I hope my answer, I understand the question.
I think you need to place a firewall that monitors incoming and outgoing connections, this is between your datacenter and internet. It can be a Linux antivirus software like Kaspersky, are already proven solutions, which has no impact on operating cost expensive data center infrastructure. The DDoS is just one of the avenues of attack.