Publications

Switches are Scanners Too!: A Fast and Scalable In-Network Scanner with Programmable Switches

Published in ACM Workshop on Hot Topics in Networks (HotNets), 2021

This paper is about how to turn a programmable switch into a practical high-speed network scanner.

Recommended citation:
Guanyu Li, Menghao Zhang, Cheng Guo, Han Bao, Mingwe Xu , Hongxin Hu. "Switches are Scanners Too!: A Fast and Scalable In-Network Scanner with Programmable Switches". In the 20th ACM Workshop on Hot Topics in Networks (HotNets), Virtual Conference, November 10-12, 2021.

Enabling Performant, Flexible and Cost-Efficient DDoS Defense With Programmable Switches

Published in IEEE/ACM Transactions on Networking (TON), 2021

This paper propose a programmable defense system against volumetric DDoS attacks.

Recommended citation:
Guanyu Li, Menghao Zhang, Shicheng Wang, Chang Liu, Mingwei Xu, Ang Chen, Hongxin Hu, Guofei Gu, Qi Li, Jianping Wu. "Enabling Performant, Flexible and Cost-Efficient DDoS Defense with Programmable Switches". In IEEE/ACM Transactions on Networking (TON), 2021.

Making Multi-String Pattern Matching Scalable and Cost-Efficient with Programmable Switching ASICs

Published in IEEE International Conference on Computer Communications (INFOCOM), 2021

This paper propose a multi-string pattern matching algorithm based on programmable switches

Recommended citation:
Shicheng Wang, Menghao Zhang, Guanyu Li, Chang Liu, Ying Liu, Xuya Jia, Mingwei Xu. "Making Multi-String Pattern Matching Scalable and Cost-Efficient with Programmable Switching ASICs". In the 40th IEEE International Conference on Computer Communications (INFOCOM), Virtual Conference, May 10-13, 2021.

Control Plane Reflection Attacks and Defenses in Software-Defined Networks

Published in IEEE/ACM Transactions on Networking (TON), 2021

This paper is about novel attacks targeting SDN.

Recommended citation:
Menghao Zhang, Guanyu Li, Lei Xu, Jiasong Bai, Mingwei Xu, Guofei Gu, Jianping Wu. "Control Plane Reflection Attacks and Defenses in Software-Defined Networks". In IEEE/ACM Transactions on Networking (TON), vol. 29, no. 2, pp. 623-636, April 2021.

FastFE: Accelerating ML-based Traffic Analysis with Programmable Switches

Published in ACM SIGCOMM Workshop on Secure Programmable Network Infrastructure (SPIN), 2020

This paper propose a feature extracting system accelerated with programmable switches

Recommended citation:
Jiasong Bai, Menghao Zhang, Guanyu Li, Chang Liu, Mingwei Xu, Hongxin Hu. "FastFE: Accelerating ML-based Traffic Analysis with Programmable Switches". In the 1st Workshop on Secure Programmable Network Infrastructure (SPIN), co-located with SIGCOMM 2020, New York, USA, August 10, 2020.

Poseidon: Mitigating Volumetric DDoS Attacks with Programmable Switches

Published in The Network and Distributed System Security Symposium (NDSS), 2020

This paper propose a programmable defense system against volumetric DDoS attacks.

Recommended citation:
Menghao Zhang, Guanyu Li, Shicheng Wang, Chang Liu, Ang Chen, Hongxin Hu, Guofei Gu, Qi Li, Mingwei Xu, Jianping Wu. "Poseidon: Mitigating Volumetric DDoS Attacks with Programmable Switches". In the 27th Network and Distributed System Security Symposium (NDSS), San Diego, CA, USA, February 23-26, 2020.

NetHCF: Enabling Line-rate and Adaptive Spoofed IP Traffic Filtering

Published in IEEE International Conference on Network Protocols (ICNP), 2019

This paper is about utilizing programmable data planes to filter spoofed IP traffic.

Recommended citation:
Guanyu Li, Menghao Zhang, Chang Liu, Xiao Kong, Ang Chen, Guofei Gu, and Haixin Duan. "NetHCF: Enabling Line-rate and Adaptive Spoofed IP Traffic Filtering". In the 27th IEEE International Conference on Network Protocols (ICNP 2019), Chicago, Illinois, USA, October 7-10, 2019.

When NFV Meets ANN: Rethinking Elastic Scaling for ANN-based NFs

Published in Workshop on Harnessing the Data Revolution in Networking (HDR-Nets), co-located with ICNP, 2019

This paper is about how to scale ANN-based NFs.

Recommended citation:
Menghao Zhang, Jiasong Bai, Guanyu Li, Zili Meng, Hongda Li, Hongxin Hu, and Mingwei Xu. "When NFV Meets ANN: Rethinking Elastic Scaling for ANN-based NFs". In the 1st Workshop on Harnessing the Data Revolution in Networking (HDR-Nets), co-located with ICNP 2019, Chicago, Illinois, USA, October 7, 2019.

Tripod: Towards a Scalable, Efficient and Resilient Cloud Gateway

Published in IEEE Journal on Selected Areas in Communications (JSAC), 2019

This paper is about implementing a scalable, efficient and resilient cloud gateway.

Recommended citation:
Menghao Zhang, Jun Bi, Kai Gao, Yi Qiao, Guanyu Li, Xiao Kong, Zhaogeng Li, and Hongxin Hu. "Tripod: Towards a Scalable, Efficient and Resilient Cloud Gateway". In IEEE Journal on Selected Areas in Communications (JSAC), Vol.37, No.3, 2019.

Control Plane Reflection Attacks in SDNs: New Attacks and Countermeasures

Published in International Symposium on Research in Attacks, Intrusions and Defenses (RAID), 2018

This paper is about novel attacks targeting SDN.

Recommended citation:
Menghao Zhang, Guanyu Li, Lei Xu, Jun Bi, Guofei Gu, and Jiasong Bai. "Control Plane Reflection Attacks in SDNs: New Attacks and Countermeasures". In the 21st International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2018), Heraklion, Crete, Greece, September 10-12, 2018.

Filtering Spoofed IP Traffic Using Switching ASICs

Published in ACM SIGCOMM Conference on Posters and Demos, 2018

This paper is about using switching ASICs to filter spoofed IP traffic.

Recommended citation:
Jiasong Bai, Jun Bi, Menghao Zhang, and Guanyu Li. "Filtering Spoofed IP Traffic Using Switching ASICs". In SIGCOMM Posters and Demos, Budapest, Hungary, August 20-25, 2018.

FloodShield: Securing the SDN Infrastructure Against Denial-of-Service Attacks

Published in IEEE International Conference On Trust, Security And Privacy In Computing And Communications, 2018

This paper is about providing protection for SDN infrastructures.

Recommended citation:
Menghao Zhang, Jun Bi, Jiasong Bai, and Guanyu Li. "FloodShield: Securing the SDN Infrastructure Against Denial-of-Service Attacks". In the 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications (TrustCom 2018), New York, USA, July 31-August 3, 2018.