Skip to main content

Data-plane security applications in adversarial settings

Author(s): Wang, Liang; Mittal, Prateek; Rexford, Jennifer

To refer to this page use:
Full metadata record
DC FieldValueLanguage
dc.contributor.authorWang, Liang-
dc.contributor.authorMittal, Prateek-
dc.contributor.authorRexford, Jennifer-
dc.identifier.citationWang, Liang, Mittal, Prateek, Rexford, Jennifer. (2022). Data-plane security applications in adversarial settings. ACM SIGCOMM Computer Communication Review, 52 (2), 2 - 9. doi:10.1145/3544912.3544914en_US
dc.description.abstractHigh-speed programmable switches have emerged as a promising building block for developing performant data-plane applications. In this paper, we argue that the resource constraints and programming model of hardware switches have led to developers adopting problematic design patterns, whose security implications are not widely understood. We bridge the gap by identifying the major challenges and common design pitfalls in switch-based applications in adversarial settings. Examining five recently-proposed switch-based security applications, we find that adversaries can exploit these design pitfalls to completely bypass the protection these applications were designed to provide, or disrupt system operations by introducing collateral damage.en_US
dc.format.extent2 - 9en_US
dc.relation.ispartofACM SIGCOMM Computer Communication Reviewen_US
dc.rightsAuthor's manuscripten_US
dc.titleData-plane security applications in adversarial settingsen_US
dc.typeJournal Articleen_US

Files in This Item:
File Description SizeFormat 
2111.02268.pdf1 MBAdobe PDFView/Download

Items in OAR@Princeton are protected by copyright, with all rights reserved, unless otherwise indicated.