P4DDPI: Securing P4-Programmable Data Plane Networks via DNS Deep Packet Inspection

AlSabeh, Ali; Kfoury, Elie; Crichigno, Jorge; Bou‐Harb, Elias

doi:10.14722/madweb.2022.23012

Cited by 10 publications

(1 citation statement)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Initially, TCP/IP header attacks were relatively simple, often involving basic techniques like IP spoofing or SYN flooding. These attacks primarily targeted vulnerabilities in the TCP/IP protocol stack, exploiting weaknesses in packet header fields to disrupt network communications or compromise system integrity [34]- [37]. As network security measures improved, attackers adapted by developing more sophisticated methods to evade detection and bypass security controls.…”

Section: Figure 2 Tcp Headermentioning

confidence: 99%

Survey on evolving threats in TCP/IP header attacks: Emerging trends and future directions

Winnie Owoko

2024

World J. Adv. Eng. Technol. Sci.

View full text Add to dashboard Cite

The TCP/IP protocol suite, a cornerstone of modern networking, faces escalating threats from evolving attack vectors targeting its headers. This survey explores emerging trends in TCP/IP header attacks, assessing their potential impact and outlining future directions for defense strategies. By scrutinizing recent research and real-world incidents, the paper aims to offer insights into the evolving threat landscape and provide recommendations for enhancing network security. Key areas of investigation include the historical evolution of TCP/IP header vulnerabilities, the adaptation of attackers' techniques over time, and the development of novel defense mechanisms to counteract these threats. The survey underscores the critical importance of understanding TCP/IP header attacks in contemporary cybersecurity and highlights the necessity for proactive measures to safeguard network infrastructures. By addressing the challenges posed by evolving TCP/IP header attacks and identifying areas for further research and development, this survey contributes to the ongoing efforts to strengthen network defenses and mitigate the risks associated with cyber threats targeting TCP/IP protocols.

show abstract

Section: Figure 2 Tcp Headermentioning

confidence: 99%

Survey on evolving threats in TCP/IP header attacks: Emerging trends and future directions

Winnie Owoko

2024

World J. Adv. Eng. Technol. Sci.

View full text Add to dashboard Cite

show abstract

4MIDable: Flexible Network Offloading For Security VNFs

et al. 2023

View full text Add to dashboard Cite

The ever-growing volume of network traffic and widening adoption of Internet protocols to underpin common communication processes augments the importance of network security. In order to enforce network security policies, network managers adopt a widening set of middleboxes and network appliances to improve traffic monitoring and processing capabilities. The resource requirements to support network security appliances are constantly increasing, making efficiency of these systems an essential aspect. The move toward Software-Defined Networking and programmable data planes offers a mean to offload traffic processing functionalities to within the network itself. To this end, we present the 4MIDable framework: a platform that facilitates the integration of existing middleboxes and monitoring appliances with an SDN (P4) network infrastructure. We also present P4Protect, a 4MIDable agent that protects the network from control plane DoS attacks with negligible impact on control plane latency, and P4ID (P4-Enhanced Intrusion Detection), a 4MIDable agent that offers stateful processing and feedback to unmodified Intrusion Detection System middleboxes and reduces traffic processing by over 80% without affecting threat detection rates.

show abstract