disclaimer half baked ideas ip spoofing is a well known
play

disclaimer: half-baked ideas IP spoofing is a well-known problem a - PowerPoint PPT Presentation

Aug 14, 2022 •489 likes •700 views

disclaimer: half-baked ideas IP spoofing is a well-known problem a key component of such DDoS attacks addressing spoofing attempts to eliminate spoofing, not adopted IETF BCPs 38-84, ISOC MANRS scrubbing centers (eg Akamai,

  2. disclaimer: half-baked ideas

  7. IP spoofing is a 
 well-known problem a key component 
 of such DDoS attacks

  8. addressing spoofing ● attempts to eliminate spoofing, not adopted ● IETF BCPs 38-84, ISOC MANRS ● scrubbing centers (eg Akamai, Cloudflare, Level 3 Anti-DDoS) ● measure use of source address validation (against spoofing) ● the Spoofer project

  9. methodology and corresponding tools to detect spoofed traffic 
 in network traces 
 
 enable SAV compliance tests 
 for IXP networks

  10. more on expected results ● methodology and the analysis results of the prevalence, causes, and impact of IP source spoofing (observed in IXPs) 
 ● create a tool that enables IXPs to perform compliance tests on SAV, make it available to networking community 
 ● longitudinal measurement about adoption of SAV and filtering after we deployed our tool

  11. what could go wrong?

  12. what could go wrong? ● no collaboration from network operators ● no access to commercial traffic and client information ● coarse-grained data only, eg no flow information ● anonymized data ● overwhelming resource demands to transfer, storage and process data

  13. current status ● access to detailed data from a large IXP ● expanding access to other vantage points ● developing a processing pipeline: transformation and processing (filtering and classification) of (i) bogon, 
 (ii) unrouted, and (iii) AS-specific traffic

  14. where could we apply this?

  15. Brazilian IX.br ecosystem ● over 5.3k ASes ● 30 IXPs unevenly distributed in 27 states ● total of ~2,300 member ASes, 
 ~1,650 distinct ones ● ~102 colocation facilities (directly connected to the IX.br) ● ~4.4 Tb/s average traffic peak over the 
 last 30 days for all IX.br ecosystem

  16. Brazilian IX.br ecosystem ● over 5.3k ASes ● 30 IXPs unevenly distributed in 27 states ● total of ~2,300 member ASes, 
 ~1,650 distinct ones ● ~102 colocation facilities (directly connected to the IX.br) ● ~4.4 Tb/s average traffic peak over the 
 last 30 days for all IX.br ecosystem

  17. ix.br 
 daily 
 traffic 
 breakdown

  18. we need validation ● scientific contribution? ● confirm/challenge previous work? ● perform IPv6 analysis? ● correlate with IPv4 space grey-market address transfers? ● locate and investigate malicious ASes in BGP AS-Path? ● security hygiene best practices? ● …

  19. 
 
 Using IXPs to Measure Improvements in 
 Source Address Validation Filtering 
 of Inter-Domain Traffic Lucas Muller, Marinho Barcellos , 
 Bradley Huffaker, Matthew Luckie, kc claffy AIMS 2018

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

A half-baked approach to an embedded device driver framework in Esterel Timothy Bourke and Leonid

A half-baked approach to an embedded device driver framework in Esterel Timothy Bourke and Leonid

1 A half-baked approach to an embedded device driver framework in Esterel Timothy Bourke and Leonid Ryzhyk School of Computer Science and Engineering, UNSW and National ICT Australia Arcot Sowmya Ihor Kuz UNSW Asia, Singapore National

1.78k views • 69 slides
http://www.movieweb.com/movie/half-baked/HUf0AjhlkcyMih

http://www.movieweb.com/movie/half-baked/HUf0AjhlkcyMih

http://www.movieweb.com/movie/half-baked/HUf0AjhlkcyMih

509 views • 28 slides
Pre-computing Lighting in Games David Larsson Autodesk Inc. What is baked lighting?

Pre-computing Lighting in Games David Larsson Autodesk Inc. What is baked lighting?

Pre-computing Lighting in Games David Larsson Autodesk Inc. What is baked lighting? Precompute lighting information for static scenes and lights Typically baked to Vertices Textures Light probe points in space for relighting

770 views • 33 slides
What consistency guarantees should concurrent data structure libraries provide? Hans-J. Boehm

What consistency guarantees should concurrent data structure libraries provide? Hans-J. Boehm

What consistency guarantees should concurrent data structure libraries provide? Hans-J. Boehm hboehm@google.com Disclaimer This is half-baked and hand-wavy. Mostly questions, few answers. Reflects WG21/SG1 (C++ Concurrency) discussion. I may

575 views • 13 slides
Tullow Oil plc 2011 half-yearly results 2011 half-yearly results Disclaimer This

Tullow Oil plc 2011 half-yearly results 2011 half-yearly results Disclaimer This

2011 half-yearly results 24 August 2011 Tullow Oil plc 2011 half-yearly results 2011 half-yearly results Disclaimer This presentation contains certain forward-looking statements that are subject to the usual risk factors and uncertainties

565 views • 37 slides
Unit 23 Summary Review of some key concepts from the first half of the semester A BRIEF SUMMARY

Unit 23 Summary Review of some key concepts from the first half of the semester A BRIEF SUMMARY

23.1 23.2 Unit 23 Summary Review of some key concepts from the first half of the semester A BRIEF SUMMARY 23.3 23.4 A Few Big Ideas 1 A Few Big Ideas 2 Any algorithm can be implemented Software interacts with hardware by setting,

259 views • 5 slides
2017 Half Year Results 2017 Half Year Results DISCLAIMER This presentation contains certain

2017 Half Year Results 2017 Half Year Results DISCLAIMER This presentation contains certain

2017 Half Year Results 2017 Half Year Results DISCLAIMER This presentation contains certain forward-looking statements that are subject to the usual risk factors and uncertainties associated with the oil and gas exploration and production

822 views • 40 slides
2019 HALF YEAR RESULTS 2019 HALF YEAR RESULTS DISCLAIMER This presentation contains certain

2019 HALF YEAR RESULTS 2019 HALF YEAR RESULTS DISCLAIMER This presentation contains certain

2019 HALF YEAR RESULTS 2019 HALF YEAR RESULTS DISCLAIMER This presentation contains certain forward-looking statements that are subject to the usual risk factors and uncertainties associated with the oil and gas exploration and production

697 views • 33 slides
2018 HALF YEAR RESULTS 2018 HALF YEAR RESULTS DISCLAIMER This presentation contains certain

2018 HALF YEAR RESULTS 2018 HALF YEAR RESULTS DISCLAIMER This presentation contains certain

2018 HALF YEAR RESULTS 2018 HALF YEAR RESULTS DISCLAIMER This presentation contains certain forward-looking statements that are subject to the usual risk factors and uncertainties associated with the oil and gas exploration and production

539 views • 34 slides
Gen Gener eral In Inter eres ests: Secure Proximity / Distance Measurement GPS Spoofing and

Gen Gener eral In Inter eres ests: Secure Proximity / Distance Measurement GPS Spoofing and

Gen Gener eral In Inter eres ests: Secure Proximity / Distance Measurement GPS Spoofing and Spoofing Detec:on Usable Authen:ca:on (2FA) Security of Blockchains / Cryptocurrencies Trusted Compu:ng Secure Proximi mity / Distance Measureme

589 views • 30 slides
A Reproducibility Study of IP Spoofing Detection in Inter-Domain Traffic Jasper Eumann,

A Reproducibility Study of IP Spoofing Detection in Inter-Domain Traffic Jasper Eumann,

A Reproducibility Study of IP Spoofing Detection in Inter-Domain Traffic Jasper Eumann, Raphael Hiesgen, Thomas C. Schmidt, Matthias Whlisch t.schmidt@haw-hamburg.de Spoofing Detection in Interdomain Traffic Starting Point: Our

326 views • 8 slides
2019 Half Year Results Presentation Disclaimer Important Notice and Disclaimer Disclaimer The

2019 Half Year Results Presentation Disclaimer Important Notice and Disclaimer Disclaimer The

2019 Half Year Results Presentation Disclaimer Important Notice and Disclaimer Disclaimer The material in this presentation has been prepared by Reece Limited (ABN 49 004 313 133) ( Reece ") (ASX:REH) and is general background

346 views • 34 slides
A Reproducibility Study of IP Spoofing Detection in Inter-Domain Traffic Jasper Eumann

A Reproducibility Study of IP Spoofing Detection in Inter-Domain Traffic Jasper Eumann

A Reproducibility Study of IP Spoofing Detection in Inter-Domain Traffic Jasper Eumann October 9, 2019 iNET RG, Hamburg University of Applied Sciences Overview IP Spoofing Mitigation in General Detection in Inter-Domain Traffic

778 views • 42 slides
First Half FY2018 Investor Presentation 26 February 2018 Disclaimer DISCLAIMER The information

First Half FY2018 Investor Presentation 26 February 2018 Disclaimer DISCLAIMER The information

First Half FY2018 Investor Presentation 26 February 2018 Disclaimer DISCLAIMER The information presented to you by Apiam Animal Health Limited ACN 604 961 024 ( Company ) in this presentation and any related documents (together, Materials ) has

380 views • 18 slides
DNS: the Kaminsky Blind Spoofing Attack CS 161: Computer Security Prof. David Wagner April 1,

DNS: the Kaminsky Blind Spoofing Attack CS 161: Computer Security Prof. David Wagner April 1,

DNS: the Kaminsky Blind Spoofing Attack CS 161: Computer Security Prof. David Wagner April 1, 2016 16 bits 16 bits DNS Blind Spoofing, cont. SRC=53 DST=53 checksum length Once we randomize the Identification Flags Identification,

768 views • 53 slides
Half Year Results Presentation for the half year ended 30 June 2019 31 July 2019 Disclaimer

Half Year Results Presentation for the half year ended 30 June 2019 31 July 2019 Disclaimer

Half Year Results Presentation for the half year ended 30 June 2019 31 July 2019 Disclaimer This presentation is not intended to, and does not constitute or form part of, any offer, invitation or the solicitation of an offer to purchase,

1.09k views • 69 slides
Powerex EIM Experience NWPP ATF and System Schedulers Meeting Jeff Spires Oct 23, 2018

Powerex EIM Experience NWPP ATF and System Schedulers Meeting Jeff Spires Oct 23, 2018

Powerex EIM Experience NWPP ATF and System Schedulers Meeting Jeff Spires Oct 23, 2018 Disclaimer Powerex is committed to full compliance with laws and regulations, including federal and state antitrust laws. Powerex, the merchant subsidiary

1.44k views • 97 slides
California Affordable Housing June 15, 2017 Housekeeping Use the red arrow to open and close

California Affordable Housing June 15, 2017 Housekeeping Use the red arrow to open and close

Solar Risk: How Energy Storage Can Preserve Solar Savings in California Affordable Housing June 15, 2017 Housekeeping Use the red arrow to open and close your control panel Join audio: Choose Mic & Speakers to use VoIP Choose

320 views • 30 slides
The 1999 Flood of the Century: Extraordinary Hydro-meteorological Event or Human-induced

The 1999 Flood of the Century: Extraordinary Hydro-meteorological Event or Human-induced

The 1999 Flood of the Century: Extraordinary Hydro-meteorological Event or Human-induced Catastrophe? Scott A. Lecce Erica S. Kotecki East Carolina University Question: Was this simply an extraordinary natural event, or a human

490 views • 31 slides
Numerical Investigation of Turbulence Suppression in Rotating Flows C. Brehm, J. Davis, S. Ganju,

Numerical Investigation of Turbulence Suppression in Rotating Flows C. Brehm, J. Davis, S. Ganju,

Numerical Investigation of Turbulence Suppression in Rotating Flows C. Brehm, J. Davis, S. Ganju, and S. Bailey Mechanical Engineering, University of Kentucky, Lexington, USA Funding from NSF (CBET-1706346) with Program Manager Dr. Ron Joslin

302 views • 29 slides
Flow Control An Engineering Approach to Computer Networking An Engineering Approach to Computer

Flow Control An Engineering Approach to Computer Networking An Engineering Approach to Computer

Flow Control An Engineering Approach to Computer Networking An Engineering Approach to Computer Networking Flow control problem Consider file transfer Consider file transfer Sender sends a stream of packets representing fragments of

738 views • 53 slides
Elas%cTree: Saving Energy in Data Center Networks Brandon

Elas%cTree: Saving Energy in Data Center Networks Brandon

Elas%cTree: Saving Energy in Data Center Networks Brandon Heller (Stanford) Srini Seetharaman (Deutsche Telekom R&D, Los Altos) Priya Mahadevan

869 views • 66 slides
Insights for the water sector helping decision-makers move forward Canadian Water Network frames

Insights for the water sector helping decision-makers move forward Canadian Water Network frames

Insights for the water sector helping decision-makers move forward Canadian Water Network frames what is known and unknown in a way that usefully informs the choices being made. cwn-rce.ca Canadian Trends in Water Use From 2011 to 2015

1.05k views • 83 slides
Patient Engagement in Practice Country example Iceland rds Jna Hrafnkelsdttir, MD,

Patient Engagement in Practice Country example Iceland rds Jna Hrafnkelsdttir, MD,

Patient Engagement in Practice Country example Iceland rds Jna Hrafnkelsdttir, MD, PhD, FESC 30th January 2019 Involvement and decision making Information on diseases and treatment options is provided orally to patients (and

66 views • 5 slides

More recommend