Protecting Critical Inter-Domain Communication through Flyover Reservations

08/31/2022
by   Marc Wyss, et al.
0

To protect against naturally occurring or adversely induced congestion in the Internet, we propose the concept of flyover reservations, a fundamentally new approach for addressing the availability demands of critical low-volume applications. In contrast to path-based reservation systems, flyovers are fine-grained "hop-based" bandwidth reservations on the level of individual autonomous systems. We demonstrate the scalability of this approach experimentally through simulations on large graphs. Moreover, we introduce Helia, a protocol for secure flyover reservation setup and data transmission. We evaluate Helia's performance based on an implementation in DPDK, demonstrating authentication and forwarding of reservation traffic at 160 Gbps. Our security analysis shows that Helia can resist a large variety of powerful attacks against reservation admission and traffic forwarding. Despite its simplicity, Helia outperforms current state-of-the-art reservation systems in many key metrics.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
08/19/2023

Hummingbird: A Flexible and Lightweight Inter-Domain Bandwidth-Reservation System

The current Internet lacks a bandwidth-reservation infrastructure that e...
research
01/14/2019

Uncovering Vulnerable Industrial Control Systems from the Internet Core

Industrial control systems (ICS) are managed remotely with the help of d...
research
09/16/2022

PA-Boot: A Formally Verified Authentication Protocol for Multiprocessor Secure Boot

Hardware supply-chain attacks are raising significant security threats t...
research
06/19/2023

FDTI: Fine-grained Deep Traffic Inference with Roadnet-enriched Graph

This paper proposes the fine-grained traffic prediction task (e.g. inter...
research
06/06/2022

CompartOS: CHERI Compartmentalization for Embedded Systems

Existing high-end embedded systems face frequent security attacks. Softw...
research
06/24/2021

Towards Language-Based Mitigation of Traffic Analysis Attacks

Traffic analysis attacks pose a major risk for online security. Distinct...
research
03/09/2020

Secure Traffic Lights: Replay Attack Detection for Model-based Smart Traffic Controllers

Rapid urbanization calls for smart traffic management solutions that inc...

Please sign up or login with your details

Forgot password? Click here to reset