NSF PAR Search | NSF Public Access Repository

Note: When clicking on a Digital Object Identifier (DOI) number, you will be taken to an external site maintained by the publisher. Some full text articles may not yet be available without a charge during the embargo (administrative interval).
What is a DOI Number?

Some links on this page may take you to non-federal websites. Their policies may differ from this site.

When Idling is Ideal: Optimizing Tail-Latency for Heavy-Tailed Datacenter Workloads with Perséphone

https://doi.org/10.1145/3477132.3483571

Demoulin, Henri Maxime; Fried, Joshua; Pedisich, Isaac; Kogias, Marios; Loo, Boon Thau; Phan, Linh Thi; Zhang, Irene (October 2021, Proceedings of the ACM SIGOPS 28th Symposium on Operating Systems Principles (SOSP))

Full Text Available
Automated Detection and Mitigation of Application-level Asymmetric DoS Attacks

https://doi.org/10.1145/3229584.3229589

Demoulin, Henri Maxime; Pedisich, Isaac; Phan, Linh Thi; Loo, Boon Thau (August 2018, Proceedings of the Afternoon Workshop on Self-Driving Networks)

Full Text Available
Detecting Asymmetric Application-layer Denial-of-Service Attacks In-Flight with FineLame

https://doi.org/10.5555/3358807.3358866

Demoulin, Henri Maxime; Pedisich, Isaac; Vasilakis, Nikos; Liu, Vincent; Loo, Boon Thau; Phan, Linh Thi (January 2019, Proceedings of the 2019 USENIX Conference on Usenix Annual Technical Conference)

Denial of service (DoS) attacks increasingly exploit algorithmic, semantic, or implementation characteristics dormant in victim applications, often with minimal attacker resources. Practical and efficient detection of these asymmetric DoS attacks requires us to (i) catch offending requests in-flight, before they consume a critical amount of resources, (ii) remain agnostic to the application internals, such as the programming language or runtime system, and (iii) introduce low overhead in terms of both performance and programmer effort. This paper introduces FINELAME, a language-independent framework for detecting asymmetric DoS attacks. FINELAME leverages operating system visibility across the entire software stack to instrument key resource allocation and negotiation points. It leverages recent advances in the Linux extended Berkeley Packet Filter virtual machine to attach application-level interposition probes to key request processing functions, and lightweight resource monitors--user/kernel-level probes--to key resource allocation functions. The data collected is used to train a model of resource utilization that occurs throughout the lifetime of individual requests. The model parameters are then shared with the resource monitors, which use them to catch offending requests in-flight, inline with resource allocation. We demonstrate that FINELAME can be integrated with legacy applications with minimal effort, and that it is able to detect resource abuse attacks much earlier than their intended completion time while posing low performance overheads.
more » « less
Full Text Available
TMC: Pay-as-you-Go Distributed Communication

https://doi.org/10.1145/3343180.3343194

Demoulin, Henri Maxime; Vasilakis, Nikos; Sonchack, John; Pedisich, Isaac; Liu, Vincent; Loo, Boon Thau; Phan, Linh Thi; Smith, Jonathan M.; Zhang, Irene (August 2019, Proceedings of the 3rd Asia-Pacific Workshop on Networking 2019)

We revisit the gap between what distributed systems need from the transport layer and what protocols in wide deployment provide. Such a gap complicates the implementation of distributed systems and impacts their performance. We introduce Tunable Multicast Communication (TMC), an abstraction that allows developers to easily specialize communication channels in distributed systems. TMC is presented as a deployable and extensible user-space library that exposes high-level tunable guarantees. TMC has the potential of improving the performance of distributed applications with minimal-to-zero development and deployment effort.
more » « less
Full Text Available

Search for: All records