CLEF: Limiting the damage caused by large flows in the internet core

Hao Wu, Hsu Chun Hsiao, Daniele E. Asoni, Simon Scherrer, Adrian Perrig, Yih-Chun Hu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

The detection of network flows that send excessive amounts of traffic is of increasing importance to enforce QoS and to counter DDoS attacks. Large-flow detection has been previously explored, but the proposed approaches can be used on high-capacity core routers only at the cost of significantly reduced accuracy, due to their otherwise too high memory and processing overhead. We propose CLEF, a new large-flow detection scheme with low memory requirements, which maintains high accuracy under the strict conditions of high-capacity core routers. We compare our scheme with previous proposals through extensive theoretical analysis, and with an evaluation based on worst-case-scenario attack traffic. We show that CLEF outperforms previously proposed systems in settings with limited memory.

Original languageEnglish (US)
Title of host publicationCryptology and Network Security - 17th International Conference, CANS 2018, Proceedings
EditorsPanos Papadimitratos, Jan Camenisch
PublisherSpringer-Verlag
Pages89-108
Number of pages20
ISBN (Print)9783030004330
DOIs
StatePublished - Jan 1 2018
Event17th International Conference on Cryptology and Network Security, CANS 2018 - Naples, Italy
Duration: Sep 30 2018Oct 3 2018

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume11124 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other17th International Conference on Cryptology and Network Security, CANS 2018
CountryItaly
CityNaples
Period9/30/1810/3/18

Fingerprint

Damage
Limiting
Internet
Router
Routers
Data storage equipment
Attack
Traffic
DDoS
Network Flow
Telecommunication traffic
Theoretical Analysis
Quality of service
High Accuracy
Scenarios
Requirements
Evaluation
Processing

Keywords

  • Damage metric
  • Large-flow detection
  • Memory and computation efficiency

ASJC Scopus subject areas

  • Theoretical Computer Science
  • Computer Science(all)

Cite this

Wu, H., Hsiao, H. C., Asoni, D. E., Scherrer, S., Perrig, A., & Hu, Y-C. (2018). CLEF: Limiting the damage caused by large flows in the internet core. In P. Papadimitratos, & J. Camenisch (Eds.), Cryptology and Network Security - 17th International Conference, CANS 2018, Proceedings (pp. 89-108). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 11124 LNCS). Springer-Verlag. https://doi.org/10.1007/978-3-030-00434-7_5

CLEF : Limiting the damage caused by large flows in the internet core. / Wu, Hao; Hsiao, Hsu Chun; Asoni, Daniele E.; Scherrer, Simon; Perrig, Adrian; Hu, Yih-Chun.

Cryptology and Network Security - 17th International Conference, CANS 2018, Proceedings. ed. / Panos Papadimitratos; Jan Camenisch. Springer-Verlag, 2018. p. 89-108 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 11124 LNCS).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Wu, H, Hsiao, HC, Asoni, DE, Scherrer, S, Perrig, A & Hu, Y-C 2018, CLEF: Limiting the damage caused by large flows in the internet core. in P Papadimitratos & J Camenisch (eds), Cryptology and Network Security - 17th International Conference, CANS 2018, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 11124 LNCS, Springer-Verlag, pp. 89-108, 17th International Conference on Cryptology and Network Security, CANS 2018, Naples, Italy, 9/30/18. https://doi.org/10.1007/978-3-030-00434-7_5
Wu H, Hsiao HC, Asoni DE, Scherrer S, Perrig A, Hu Y-C. CLEF: Limiting the damage caused by large flows in the internet core. In Papadimitratos P, Camenisch J, editors, Cryptology and Network Security - 17th International Conference, CANS 2018, Proceedings. Springer-Verlag. 2018. p. 89-108. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-030-00434-7_5
Wu, Hao ; Hsiao, Hsu Chun ; Asoni, Daniele E. ; Scherrer, Simon ; Perrig, Adrian ; Hu, Yih-Chun. / CLEF : Limiting the damage caused by large flows in the internet core. Cryptology and Network Security - 17th International Conference, CANS 2018, Proceedings. editor / Panos Papadimitratos ; Jan Camenisch. Springer-Verlag, 2018. pp. 89-108 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).
@inproceedings{337a59637e134aa5b8fe48906bebe361,
title = "CLEF: Limiting the damage caused by large flows in the internet core",
abstract = "The detection of network flows that send excessive amounts of traffic is of increasing importance to enforce QoS and to counter DDoS attacks. Large-flow detection has been previously explored, but the proposed approaches can be used on high-capacity core routers only at the cost of significantly reduced accuracy, due to their otherwise too high memory and processing overhead. We propose CLEF, a new large-flow detection scheme with low memory requirements, which maintains high accuracy under the strict conditions of high-capacity core routers. We compare our scheme with previous proposals through extensive theoretical analysis, and with an evaluation based on worst-case-scenario attack traffic. We show that CLEF outperforms previously proposed systems in settings with limited memory.",
keywords = "Damage metric, Large-flow detection, Memory and computation efficiency",
author = "Hao Wu and Hsiao, {Hsu Chun} and Asoni, {Daniele E.} and Simon Scherrer and Adrian Perrig and Yih-Chun Hu",
year = "2018",
month = "1",
day = "1",
doi = "10.1007/978-3-030-00434-7_5",
language = "English (US)",
isbn = "9783030004330",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer-Verlag",
pages = "89--108",
editor = "Panos Papadimitratos and Jan Camenisch",
booktitle = "Cryptology and Network Security - 17th International Conference, CANS 2018, Proceedings",

}

TY - GEN

T1 - CLEF

T2 - Limiting the damage caused by large flows in the internet core

AU - Wu, Hao

AU - Hsiao, Hsu Chun

AU - Asoni, Daniele E.

AU - Scherrer, Simon

AU - Perrig, Adrian

AU - Hu, Yih-Chun

PY - 2018/1/1

Y1 - 2018/1/1

N2 - The detection of network flows that send excessive amounts of traffic is of increasing importance to enforce QoS and to counter DDoS attacks. Large-flow detection has been previously explored, but the proposed approaches can be used on high-capacity core routers only at the cost of significantly reduced accuracy, due to their otherwise too high memory and processing overhead. We propose CLEF, a new large-flow detection scheme with low memory requirements, which maintains high accuracy under the strict conditions of high-capacity core routers. We compare our scheme with previous proposals through extensive theoretical analysis, and with an evaluation based on worst-case-scenario attack traffic. We show that CLEF outperforms previously proposed systems in settings with limited memory.

AB - The detection of network flows that send excessive amounts of traffic is of increasing importance to enforce QoS and to counter DDoS attacks. Large-flow detection has been previously explored, but the proposed approaches can be used on high-capacity core routers only at the cost of significantly reduced accuracy, due to their otherwise too high memory and processing overhead. We propose CLEF, a new large-flow detection scheme with low memory requirements, which maintains high accuracy under the strict conditions of high-capacity core routers. We compare our scheme with previous proposals through extensive theoretical analysis, and with an evaluation based on worst-case-scenario attack traffic. We show that CLEF outperforms previously proposed systems in settings with limited memory.

KW - Damage metric

KW - Large-flow detection

KW - Memory and computation efficiency

UR - http://www.scopus.com/inward/record.url?scp=85057346582&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85057346582&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-00434-7_5

DO - 10.1007/978-3-030-00434-7_5

M3 - Conference contribution

AN - SCOPUS:85057346582

SN - 9783030004330

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 89

EP - 108

BT - Cryptology and Network Security - 17th International Conference, CANS 2018, Proceedings

A2 - Papadimitratos, Panos

A2 - Camenisch, Jan

PB - Springer-Verlag

ER -