Simone Sampognaro
Learning to Defend: Adaptive Mitigation of Amplification-Based DDoS Attacks in Programmable Networks.
Rel. Fulvio Valenza, Riccardo Sisto. Politecnico di Torino, Corso di laurea magistrale in Cybersecurity, 2026
|
Preview |
PDF (Tesi_di_laurea)
- Tesi
Licenza: Creative Commons Attribution Non-commercial No Derivatives. Download (4MB) | Preview |
Abstract
Distributed Denial of Service attacks have evolved into persistent, large-scale threats to Internet availability, with amplification-based techniques enabling adversaries to generate terabit-per-second traffic volumes by exploiting protocol asymmetries. Traditional mitigation strategies, often relying on static filtering rules or control-plane-based inspection, struggle to cope with increasingly dynamic and adaptive attack patterns. As a result, recent research has progressively shifted toward In-Network Machine Learning, leveraging programmable data planes enabled by the P4 language to detect and mitigate attacks directly within network switches at line rate. Programmable switches allow customized packet parsing, telemetry extraction, and stateful processing inside the forwarding pipeline, making it possible to embed security mechanisms directly into network hardware.
However, strict line-rate constraints, limited memory, and restricted arithmetic capabilities significantly constrain the class of machine learning algorithms that can be realistically implemented in such architectures
Relatori
Anno Accademico
Tipo di pubblicazione
Numero di pagine
Corso di laurea
Classe di laurea
Ente in cotutela
Aziende collaboratrici
URI
![]() |
Modifica (riservato agli operatori) |
