Publication Details
Accelerated DDoS Attacks Mitigation using Programmable Data Plane
Vojanec Kamil, Ing. (FIT BUT)
Kučera Jan, Ing. (CESNET)
Benáček Pavel, Ing. (CESNET)
Denial-of-service Attacks, DDoS Mitigation, Programmable Data Planes, P4, FPGA
DDoS attacks are a significant threat to internet service or infrastructure providers. This poster presents an FPGA-accelerated device and DDoS mitigation technique to overcome such attacks. Our work addresses amplification attacks whose goal is to generate enough traffic to saturate the victims links. The main idea of the device is to efficiently filter malicious traffic at high-speeds directly in the backbone infrastructure before it even reaches the victim's network. We implemented our solution for two FPGA platforms using the high-level description in P4, and we report on its performance in terms of throughput and hardware resources.
@INPROCEEDINGS{FITPUB12068,
author = "M\'{a}rio Kuka and Kamil Vojanec and Jan Ku\v{c}era and Pavel Ben\'{a}\v{c}ek",
title = "Accelerated DDoS Attacks Mitigation using Programmable Data Plane",
pages = "1--3",
booktitle = "2019 ACM/IEEE Symposium on Architectures for Networking and Communications Systems, ANCS 2019",
year = 2019,
location = "Cambridge, GB",
publisher = "Institute of Electrical and Electronics Engineers",
ISBN = "978-1-7281-4387-3",
doi = "10.1109/ANCS.2019.8901882",
language = "english",
url = "https://www.fit.vut.cz/research/publication/12068"
}