Hardware SYN Attack Protection for High Performance Load Balancers

Reuven Cohen, Matty Kadosh, Alan Lo, Qasem Sayah

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

SYN flooding is a simple and effective denial-of-service attack, in which an attacker sends many SYN requests to a target's server in an attempt to consume server resources and make it unresponsive to legitimate traffic. While SYN attacks have traditionally targeted web servers, they are also known to be very harmful to intermediate cloud devices, and in particular to stateful load balancers (LBs). We propose LB schemes that guarantee high throughput of one million connections per second, while supporting a high pool update rate without breaking connections, and fighting against a high rate SYN attack, of up to 10 million fake SYNs per second.

Original languageEnglish
Title of host publicationProceedings - 2021 IEEE Symposium on High-Performance Interconnects, HOTI 2021
Pages9-16
Number of pages8
ISBN (Electronic)9781665432481
DOIs
StatePublished - Aug 2021
Event28th Annual IEEE Symposium on High-Performance Interconnects, HOTI 2021 - Virtual, Santa Clara, United States
Duration: 18 Aug 202120 Aug 2021

Publication series

NameProceedings - Symposium on the High Performance Interconnects, Hot Interconnects
Volume2021-August

Conference

Conference28th Annual IEEE Symposium on High-Performance Interconnects, HOTI 2021
Country/TerritoryUnited States
CityVirtual, Santa Clara
Period18/08/2120/08/21

All Science Journal Classification (ASJC) codes

  • General Engineering

Fingerprint

Dive into the research topics of 'Hardware SYN Attack Protection for High Performance Load Balancers'. Together they form a unique fingerprint.

Cite this