Assessing the Threats Targeting Low Latency Traffic: the Case of L4S

NOMS 2023-2023 IEEE/IFIP Network Operations and Management Symposium

et al. 2023

The Low-Latency Low-Loss Scalable throughput (L4S) architecture has recently been proposed to reduce the network latency of low-latency services and to allow their flows to coexist with classic ones in the same domain. This coexistence implies monitoring and security challenges. However current monitoring methods, primarily based-on sampling and polling, exhibit performance and granularity limitations. This paper describes the challenges for monitoring LL services and details our solution when introducing a fine-grained and real-time monitoring capability in our P4-based L4S implementation using In-band Network Telemetry. The initial experimental evaluation shows that our solution is able to monitor the metrics of an L4S switch with very few networking and processing overhead and without disturbing the L4S behaviour.

Section: Assessment Of the L4s Behaviourmentioning

confidence: 66%

“…While some LL and CL traffic coexistence issues such as throughput sharing, are addressed in L4S specifications, deploying L4S still implies assurance and security challenges that are calling for a monitoring framework. For instance, three categories of threats to make LL applications unusable have been identified in [3] .…”

Section: Introductionmentioning

confidence: 99%

A Comprehensive P4-based Monitoring Framework for L4S leveraging In-band Network Telemetry

Nguyễn

Mathieu

NOMS 2023-2023 IEEE/IFIP Network Operations and Management Symposium

et al. 2023

“…a 5 Mo file for 10 Mbps and a 25 Mo file for 50 Mbps). To be able to transmit files above 1 Mo, we tuned two pre-processor variables 7 , thus creating a larger buffer to be able to randomly generate larger files. Figure 3 depicts the median, first and last quartile of the flow occupancy, standing for the throughput reachable by picoquic against the router throughput limitation.…”

Section: Undesirable Traffic Injector Performance and Limitsmentioning

confidence: 99%

“…In this paper, we identify some relevant attacks a malicious user can implement against L4S and present their impacts, with different network conditions. More specifically, the contributions of the paper, as compared to the previous one presented in [7] are:…”

Section: Introductionmentioning

confidence: 99%

A Comprehensive Characterization of Threats Targeting Low-Latency Services: The Case of L4S

Doyen²,

Cogranne³

et al. 2022

J Netw Syst Manage

Self Cite

New types of services with low-latency requirements have become a major challenge for the future Internet. Many optimizations, all targeting the latency reduction have been proposed, and among them, jointly re-architecting congestion control and active queue management has been particularly considered. In this effort, the L4S (Low Latency, Low Loss and Scalable Throughput) proposal aims at allowing both classic and low-latency traffic to cohabit within a single node architecture. Although this architecture sounds promising for latency improvement, it can be exploited by an attacker to perform malicious actions whose purposes are to defeat its low-latency feature and consequently make their supported applications unusable. In this paper, we analyze the set of weaknesses of the L4S proposal and we show that application-layer protocols such as QUIC can easily be hacked in order to exploit the over-sensitivity of those new services to network variations. By implementing such undesirable flows in a real testbed and characterizing how they impact the proper delivery of lowlatency flows, we demonstrate their reality and give insights for research directions on the detection of flows threatening low latency services.

“…In addition, we prove that application-layer protocols such as QUIC can easily be hacked in order to exploit the over sensitivity of those new services to network variations. By implementing undesirable flows in a testbed and evaluating how they impact the delivery of low-latency flows, we demonstrate their reality and the need of research in the detection of this new kind of threats [4,5].…”

mentioning

confidence: 99%

Assessing the Threats Targeting Low Latency Traffic: the Case of L4S

2021 17th International Conference on Network and Service Management (CNSM)

N'Djore

Doyen

et al. 2021

New services are designed for the future of Internet, and some of them will require the network to provide low latency traffic. Many optimizations targeting latency reduction have been proposed. Among them, re-architecting congestion control and active queue management (AQM) has been particularly studied. L4S [1,2,3] (Low Latency, Low Loss and Scalable Throughput) is a new network architecture that aims at allowing coexistence between low latency traffic and classic traffic within a single node, involving a dual queue coupled AQM. Although this architecture sounds promising for latency improvement, an attacker can exploit some vulnerabilities to defeat its low-latency features and consequently make some services unusable. In addition, we prove that application-layer protocols such as QUIC can easily be hacked in order to exploit the over sensitivity of those new services to network variations. By implementing undesirable flows in a testbed and evaluating how they impact the delivery of low-latency flows, we demonstrate their reality and the need of research in the detection of this new kind of threats [4,5].