Abstract

Link-flooding attacks have the potential to disconnect even entire countries from the Internet. Moreover, newly proposed indirect link-flooding attacks, such as ``Crossfire'', are extremely hard to expose and, subsequently, mitigate effectively. Traffic Engineering (TE) is the network's natural way of mitigating link overload events, balancing the load and restoring connectivity. This work poses the question: Do we need a new kind of TE to expose an attack as well? The key idea is that a carefully crafted, attack-aware TE could force the attacker to follow improbable traffic patterns, revealing his target and his identity over time. We show that both existing and novel TE modules can efficiently expose the attack, and study the benefits of each approach. We implement defense prototypes using simulation mechanisms and evaluate them extensively on multiple real topologies.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
On Modeling Link Flooding Attacks and Defenses
Xin Wang ... Jianfeng Li
IEEE Access | VOL. 9
Xin Wang, et. al.Xin Wang ... Jianfeng Li
01 Jan 2020
RL-Shield: Mitigating Target Link-Flooding Attacks Using SDN and Deep Reinforcement Learning Routing Algorithm
Amir Rezapour ... Wen-Guey Tzeng
IEEE Transactions on Dependable and Secure Computing | VOL. 19
Amir Rezapour, et. al.Amir Rezapour ... Wen-Guey Tzeng
01 Nov 2022
ReLFA: Resist link flooding attacks via renyi entropy and deep reinforcement learning in SDN-IoT
Jiushuang Wang ... Weiting Zhang
China Communications | VOL. 19
Jiushuang Wang, et. al.Jiushuang Wang ... Weiting Zhang
01 Jul 2022
ModelNet-TE: An emulation tool for the study of P2P and traffic engineering interaction dynamics
Dario Rossi ... Matteo Sammarco
Peer-to-Peer Networking and Applications | VOL. 6
Dario Rossi, et. al.Dario Rossi ... Matteo Sammarco
13 Apr 2012
View more papers

More From: ACM SIGCOMM Computer Communication Review

Paper Title
Journal
Date
Author
Towards Re-Architecting Today's Internet for Survivability: NSF Workshop Report
Fabián E Bustamante ... Walter Willinger
ACM SIGCOMM Computer Communication Review | VOL. 54
Fabián E Bustamante, et. al.Fabián E Bustamante ... Walter Willinger
30 Apr 2024
On Sample Selection for Continual Learning: A Video Streaming Case Study
Alexander Dietmüller ... Laurent Vanbever
ACM SIGCOMM Computer Communication Review | VOL. 54
Alexander Dietmüller, et. al.Alexander Dietmüller ... Laurent Vanbever
30 Apr 2024
This Is a Local Domain: On Amassing Country-Code Top-Level Domains from Public Data
Raffaele Sommese ... Mattijs Jonker
ACM SIGCOMM Computer Communication Review | VOL. 54
Raffaele Sommese, et. al.Raffaele Sommese ... Mattijs Jonker
30 Apr 2024
The April 2024 Issue
Steve Uhlig
ACM SIGCOMM Computer Communication Review | VOL. 54
Steve UhligSteve Uhlig
30 Apr 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.