Abstract:
Distributed denial of service (DDoS) Attacks are getting more advanced due to diversity in attack vectors, attack volume, and their dynamic nature, leading to diverse mitigation requirements. The DDoS landscape is constantly changing which demands evolvable defense. Current DDoS defense systems are a one-size-fits-all solution, resulting in limitations such as: 1) Hardware-based defenses which are inelastic with respect to capacity, deployment and attack coverage, 2) Software-based defenses which are not performant, and are reactive. We propose Sangh which unifies heterogeneous data planes such as programmable switches, VMs etc., to provide performant, flexible and evolvable DDoS defense.
Release Date: N/AUploaded File: View