ATHENE Lectures mit Prof. Anat Bremler-Barr

Zu den ATHENE Lectures laden wir etablierte nationale und inter­nationale Cyber­security-Expert*innen, die uns Einblicke in ihre neuesten Foschungsergebnisse geben.
Die Lectures finden meist hybrid (vor Ort am Fraunhofer SIT in Darmstadt) statt, so dass auch die Möglichkeit besteht, sich persönlich mit den wichtigsten Akteuren der Cybersicherheit zu treffen und auszutauschen. Die Vortragssprache ist Englisch.

Die Vorträge sind öffentlich. Interessierte Besucher*innen sind herzlich willkommen. 

Für die kommenden ATHENE Lectures können Sie sich hier anmelden: ZUR ANMELDUNG

Abstract

It is a common belief that Auto-scaling mechanisms serve as a mitigation for Distributed Denial of Service (DDoS) attacks on cloud computing infrastructures by dynamically adding machines to cope with the additional load. Intuitively, such attacks are mostly associated with Economic Denial of Sustainability (EDoS) derived from paying for the extra resources required to process the malicious incoming traffic.

Contrary to this belief, we present and analyze the Yo-Yo attack, a new attack against the auto-scaling mechanism that can cause significant performance degradation in addition to economic damage. We demonstrate the attack on Amazon EC2, Kubernetes, and serverless architecture. We then present and analyze Tandem Attack, a new attack on Microservices architecture. In this attack, the attacker exploits the tandem behavior of services with different auto-scaling mechanisms, causing both economic and performance damage.

Biografie

Prof. Anat Bremler-Barr is a computer network researcher. In 2001, she co-founded Riverhead Networks Inc., a company that provides systems to protect from Denial-of-Service attacks. The company was acquired by Cisco Systems in 2004. She then became a faculty member of Efi Arazi School of Computer Science at Reichman University. In 2023, she joined the Blavatnik School of Computer Science at Tel-Aviv University.  She is the founder and director of the Deepness Lab, which focuses on designing reliable and efficient networks and network devices. Her research interests are in computer networks and network security. Her recent research works are focused on DNS security, Cloud security, IoT security, DDoS mitigation, and CVEs analysis.