SYN Flood Attack Detection and Mitigation with P4 Programmable Switches

security apps with p4 programmable switches n.w
1 / 4
Embed
Share

Learn about detecting and mitigating SYN flood attacks using P4 programmable switches. Understand the concept of SYN flood attacks, how they overload servers, and how P4 can help detect and drop malicious SYN packets to protect against such attacks effectively.

  • SYN Flood
  • P4
  • Switches
  • Security
  • Network
rayaanacharya
oge_tsu Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. Security Apps with P4 Programmable Switches Detecting and mitigating SYN flood attacks in P4 Ali AlSabeh, Jorge Crichigno University of South Carolina http://ce.sc.edu/cyberinfra University of South Carolina (USC) Energy Sciences Network (ESnet) September 18, 2023 1

  2. SYN Flood Attack Massive amount of TCP SYN requests with spoofed IP addresses are sent to the server These connections consume the server s resources, making it unresponsive to legitimate traffic Server start half-open connections Connections build up until queue is full and all additional requests are blocked SYN packets Attack machine Target server 2

  3. SYN Flood Detection in P4 Count the number of SYN packets per second in the data plane When the count exceeds a predefined threshold, the switch starts dropping SYN packets The dropping percentage is configured by the administrator from the control plane 3

  4. SYN Flood Detection in P4 Assuming that the attacker is generating 900 SYN packets per second The SYN count detection threshold is 100 packets per second Assume that the drop percentage is 50% The number of packets that will be forwarded is: 100 + (900 100) 50/100 = 100 + 800 2 = 500 1 500 1 900 Victim Attacker SYN packets threshold: 100 Dropping percentage: 50% 4

Related


Types Cyber Attacks: Cyber Security Training Workshop

Types Cyber Attacks: Cyber Security Training Workshop

anara
Office Of State Grants

Office Of State Grants

mariposa
The National Flood Insurance Program (NFIP) and Floodplain Management

The National Flood Insurance Program (NFIP) and Floodplain Management

ianthe
Introduction to Flood Risk Assessment with HEC-FDA Overview

Introduction to Flood Risk Assessment with HEC-FDA Overview

theia
U.S. Geological Survey Flood Capabilities.

U.S. Geological Survey Flood Capabilities.

lauryn
Flood Risk Assessment of Urban Systems

Flood Risk Assessment of Urban Systems

thatcher
USDA Watershed Programs for Local Communities

USDA Watershed Programs for Local Communities

caiden
Denial-of-Service Attacks and Defense Strategies

Denial-of-Service Attacks and Defense Strategies

delphi
Network Denial of Service (DoS) Attacks

Network Denial of Service (DoS) Attacks

zahra
Economic Analysis of Climate-Induced Flood Adaptation in Koshi Basin, Nepal

Economic Analysis of Climate-Induced Flood Adaptation in Koshi Basin, Nepal

mamoudo
Ancient Flood Narratives: Sumerian, Babylonian, and Hebrew Accounts

Ancient Flood Narratives: Sumerian, Babylonian, and Hebrew Accounts

zkyd
Flood Warning Program of Urban Drainage & Flood Control District

Flood Warning Program of Urban Drainage & Flood Control District

zahi_862
Central Valley Flood Protection Board Meeting Executive Officer Report

Central Valley Flood Protection Board Meeting Executive Officer Report

esarn
Flood Definitions and Impacts on Insurance Claims

Flood Definitions and Impacts on Insurance Claims

yat_mit
National Flood Insurance Program Overview

National Flood Insurance Program Overview

peery_b
Automated Signature Extraction for High Volume Attacks in Cybersecurity

Automated Signature Extraction for High Volume Attacks in Cybersecurity

klos_k
Flood Insurance Coverage in Detail

Flood Insurance Coverage in Detail

cont_dan
The Hydrological Cycle and Flood Hazards

The Hydrological Cycle and Flood Hazards

shey_892
Targeted Deanonymization via the Cache Side Channel: Attacks and Defenses

Targeted Deanonymization via the Cache Side Channel: Attacks and Defenses

jmora
Network Security Vulnerabilities and Attacks

Network Security Vulnerabilities and Attacks

leyo_5
Central Valley Flood Control Association - Addressing Flood Challenges in California

Central Valley Flood Control Association - Addressing Flood Challenges in California

geringer_k
Public Exhibition on Flooding in Comrie at Community Centre

Public Exhibition on Flooding in Comrie at Community Centre

bra_kni

More Related Content