- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Policy Injection: A Cloud Dataplane DoS Attack
This is a showcase/supplemental material to our SIGCOMM 2018 Demo (submission) entitled Policy Injection: A Cloud Dataplane DoS Attack.
The main insight in this demo is that in a cloud data plane where the hypervisor switch is implemented by an Open vSwitch, by specially crafted ACL rules and packet sequence it is possible to trash the megaflow cache resulting in a significant performance drop, and in certain cases, a full-blown Denial-of-Service can be "achieved".
The performances for the dst_port, dst_port+src_port, and dst_port+src_port+ip_src scenarios were dropped from the peak performance of 1.7M to 710K, 215K, and couple of hundreds PPS, respectively.
Видео Policy Injection: A Cloud Dataplane DoS Attack канала Levente Csikor
The main insight in this demo is that in a cloud data plane where the hypervisor switch is implemented by an Open vSwitch, by specially crafted ACL rules and packet sequence it is possible to trash the megaflow cache resulting in a significant performance drop, and in certain cases, a full-blown Denial-of-Service can be "achieved".
The performances for the dst_port, dst_port+src_port, and dst_port+src_port+ip_src scenarios were dropped from the peak performance of 1.7M to 710K, 215K, and couple of hundreds PPS, respectively.
Видео Policy Injection: A Cloud Dataplane DoS Attack канала Levente Csikor
Комментарии отсутствуют
Информация о видео
23 мая 2018 г. 17:12:07
00:02:38
Другие видео канала
RollBack - Part III. - RollBack is Instruction-agnostic
The Discrepancy of the OVS Megaflow cache @ OVS Fall Conference, 2018
RollBack - Part II/B. - Kia after 3 months
Network Function Performance Analyzer (NFPA )
RollBack - Part I. - Time-Agnostic Replay Attack Against the Automotive Remote Keyless Entry Systems
RollBack - Part II/A. - Mazda after 3 months
Moes / Tuya Zigbee IR blaster (UFO-R11) integration to Home Assistant with ZHA and Custom Quirk
IKEA Tradfri ZigBee light bulb 806 + Home Assistant with ZHA only + example automation + minimalist
The Discrepancy of the MegaFow Cache in OVS - Final Episode
DC-DC LM2596HV Buck Converter in action (with EN pin)
Levente Csikor - Privacy of DNS-over-HTTPS Requiem for a dream
User-Driven Troubleshooting Framework
