Table of Contents
Publications
List of publications ordered by date (beginning with the latest):
- xRAC: Execution and Access Control for Restricted Application Containers on Managed Hosts
Frederik Hauser, Mark Schmidt, Michael Menth
2019
https://arxiv.org/pdf/1907.03544
- P4-MACsec: Dynamic Topology Monitoring and Data Layer Protection with MACsec in P4-SDN
Frederik Hauser, Mark Schmidt, Marco Häberle, Michael Menth
2019
https://arxiv.org/pdf/1904.07088
- P4-IPsec: Implementation of IPsec Gateways in P4 with SDN Control for Host-to-Site Scenarios
Frederik Hauser, Marco Häberle, Mark Schmidt, Michael Menth
2019
https://arxiv.org/pdf/1907.03593
- TCP at 100 Gbit/s — Tuning, Limitations, Congestion Control
Mario Hock, Maxime Veit, Felix Neumeister, Roland Bless, Martina Zitterbart
October 2019
IEEE 44th Conference on Local Computer Networks (LCN)
- An SDN-based Approach For Defending Against Reflective DDoS Attacks
Thomas Lukaseder, Kevin Stölzle, Stephan Kleber, Benjamin Erb, Frank Kargl
October 2018
IEEE LCN'18
https://ieeexplore.ieee.org/document/8638036
- Mitigation of Flooding and Slow DDoS Attacks in a Software-Defined Network
Thomas Lukaseder, Shreya Ghosh, Frank Kargl
October 2018
IEEE LCN'18 (Demo Track)
https://arxiv.org/abs/1808.05357
- SDN-Assisted Network-Based Mitigation of Slow DDoS Attacks
Thomas Lukaseder, Lisa Maile, Benjamin Erb, Frank Kargl
August 2018
SecureComm'18
https://link.springer.com/chapter/10.1007/978-3-030-01704-0_6
- Performance Evaluation in High-Speed Networks by the Example of Intrusion Detection Systems
Thomas Lukaseder, Jessika Fiedler, Frank Kargl
Juni 2018
11. DFN-Forum Kommunikationstechnologien
https://dl.gi.de/handle/20.500.12116/16576
- OFFWall: A Static OpenFlow-Based Firewall Bypass
B. Germann, M. Schmidt, A. Stockmayer, and M. Menth
2018
11th DFN-Forum Kommunikationstechnologien
https://dl.gi.de/handle/20.500.12116/16577
- Policy-oriented AQM Steering
Roland Bless, Mario Hock, Martina Zitterbart
May 2018
IFIP Networking Conference
https://ieeexplore.ieee.org/document/8696627
- LoCoSDN: A Local Controller for Operation of OF Switches in non-SDN Networks
M. Schmidt, F. Hauser, B. Germann, and M. Menth
2018
5th IEEE International Conference on Software-Defined Systems (SDS)
https://atlas.informatik.uni-tuebingen.de/~menth/papers/Menth18f.pdf
- A Software-Defined Firewall Bypass for Congestion Offloading
F. Heimgaertner, M. Schmidt, D. Morgenstern, and M. Menth
2017
International Conference on Network and Service Management (CNSM)
https://atlas.informatik.uni-tuebingen.de/~menth/papers/Menth17k.pdf
- Experimental Evaluation of BBR Congestion Control
Mario Hock, Roland Bless, Martina Zitterbart
October 2017
IEEE ICNP'17
http://doc.tm.kit.edu/2017-kit-icnp-bbr-authors-copy.pdf
- TCP LoLa: Congestion Control for Low Latencies and High Throughput
Mario Hock, Felix Neumeister, Martina Zitterbart, Roland Bless
October 2017
IEEE LCN'17
https://doi.org/10.1109/LCN.2017.42, http://doc.tm.kit.edu/2017-LCN-lola-paper-authors-copy.pdf
- Demo: Coexistence of Low Delay and Loss-based Congestion Controls in SDN-based Networks
Mario Hock, Michael König, Roland Bless, Martina Zitterbart
October 2017
IEEE LCN'17 Demo Session
- Establishing a Session Database for SDN Using 802.1X and Multiple Authentication Resources
Frederik Hauser, Mark Schmidt, Michael Menth
2017
ICC 2017
https://atlas.informatik.uni-tuebingen.de/~menth/papers/Menth17e.pdf
- An Extensible Host-Agnostic Framework for SDN-Assisted DDoS-Mitigation
Lukaseder, Thomas; Hunt, Alexander; Stehle, Christian; Wagner, Denis; van der Heijden, Rens W. und Kargl, Frank
Oktober 2017
IEEE LCN'17
https://doi.org/10.1109/LCN.2017.42
- A Testing Framework for High-Speed Network and Security Devices
Bradatsch, Leonard; Lukaseder, Thomas; Kargl, Frank
Oktober 2017
IEEE LCN'17
https://ieeexplore.ieee.org/document/8109394
- SDN-Assisted Network-Based Mitigation of Slow HTTP Attacks
Lukaseder, Thomas; Maile, Lisa; Kargl, Frank
Oktober 2017
1. KuVS Fachgespräch “Network Softwarization” – From Research to Application
https://publikationen.uni-tuebingen.de/xmlui/handle/10900/78143
- Security Challenges and Opportunities of Software-Defined Networking
Marc C. Dacier, Hartmut Konig, Radoslaw Cwalinski, Frank Kargl, Sven Dietrich
2017
IEEE Security & Privacy, vol. 15
https://www.computer.org/csdl/mags/sp/2017/02/msp2017020096-abs.html
- Establishing a Session Database for SDN Using 802.1X and Multiple Authentication Resources
Frederik Hauser, Mark Schmidt, Michael Menth
2017
ICC 2017
https://atlas.informatik.uni-tuebingen.de/~menth/papers/Menth17e.pdf
- Network Attack Detection and Defense (Dagstuhl Seminar 16361)
Dacier, Marc C. ; Dietrich, Sven ; Kargl, Frank ; König, Hartmut
2017
Dagstuhl Report
http://drops.dagstuhl.de/opus/volltexte/2017/6912/
- Toward Coexistence of Different Congestion Control Mechanisms
Mario Hock, Roland Bless, Martina Zitterbart
November 2016
IEEE LCN'16
https://doi.org/10.1109/LCN.2016.94
- Setting Up a High-Speed TCP Benchmarking Environment—Lessons Learned
Lukaseder, Thomas; Bradatsch, Leonard; Erb, Benjamin und Kargl, Frank
November 2016
IEEE LCN'16
http://ieeexplore.ieee.org/document/7796775/
- A Comparison of TCP Congestion Control Algorithms in 10G Networks
Lukaseder, Thomas; Bradatsch, Leonard; Erb, Benjamin; van der Heijden, Rens W. und Kargl, Frank
November 2016
IEEE LCN'16
http://ieeexplore.ieee.org/document/7796870/
- OpenFlow-Based Integration of Highspeed Zones in the BelWü ISP Network for Interconnection of University Campuses
Mark Schmidt, Michael Menth, Robert Finze,
Daniel Reutter, Sebastian Neuner, Tim Kleefass
Oktober 2016
IEEE Communications Magazine
Special Issue „SDN Use Cases for Service Provider Networks“
- Demo: Resilient Integration of Distributed High-Performance Zones into the BelWue Network Using OpenFlow
Mark Schmidt, Robert Finze,
Daniel Reutter, Michael Menth
September 2016
ITC16
- OpenFlow-Based Integration of Highspeed Zones in the BelWü ISP Network for Interconnection of University Campuses
Mark Schmidt
Februar 2016
ITG 5.2.1, Heidelberg
- Koexistenz nicht-kompatibler TCP-Varianten in softwaredefinierten Netzen
Mario Hock, Mario Willems
September 2015
8. GI/ITG-Workshop MMBnet 2015
- Bericht zum Stand der Technik
Mario Hock, Thomas Lukaseder, Mark Schmidt, Frank Kargl, Michael Menth und Martina Zitterbart
Juli 2015
hock2015.pdf
Acknowledgement-Text in publications:
This work was supported by the bwNET100G+ project, which is funded by the Ministry of Science, Research and the Arts Baden-Württemberg (MWK). The authors alone are responsible for the content of this paper.
Collegiate Work
- Verhalten von TCP in Hochgeschwindigkeitsnetzen
bachelor thesis
Institute of Distributed Systems (Ulm)
11. September 2015
- Accelerating Network Intrusion Detection Using a NetFPGA Pre-Filter
master thesis
Institute of Distributed Systems (Ulm)
14. September 2015
- Erkennung und Abwehr von Denial of Service Attacken mit Hilfe von Software Defined Networking
bachelor thesis
Institute of Distributed Systems (Ulm)
17. March 2016
- Erstellung eines dynamischen Testdatensets zur Sicherheitsanalyse
master thesis
Institute of Distributed Systems (Ulm)
8. July 2016
- General Purpose Network Testing Framework (GPNTF)
student project
Institute of Distributed Systems (Ulm)
14. August 2016
- Implementation of a Pre-Filter for Network Intrusion Detection Systems
diploma thesis
Institute of Distributed Systems (Ulm)
28. September 2016
- Entwicklung einer RegEx Engine für den FPGA-Einsatz
student project
Institute of Distributed Systems (Ulm)
10. Oktober 2016
- Performance Evaluation of Intrusion Detection Systems
student project
Institute of Distributed Systems (Ulm)
28. April 2017
- Extending the SDN-Assisted DDoS Mitigation Framework
student project
Institute of Distributed Systems (Ulm)
28. April 2017
- DoS-Attacks on Coexistence-Mechanisms for TCP-Variants
bachelor thesis
Institute of Distributed Systems (Ulm)
2. Mai 2017
- SDN-Assisted DoS Mitigation
student project
Institute of Distributed Systems (Ulm)
24. Juni 2017
- SDN Assisted Distributed DDoS Attack Mitigation
bachelor thesis
Institute of Distributed Systems (Ulm)
30. August 2017
- Defending Against DRDoS Attacks in a High-Speed Network Using an SDN-based Approach
master thesis
Institute of Distributed Systems (Ulm)
18. Oktober 2017
- DDoS-Detection based on Traffic Analysis
bachelor thesis
Institute of Distributed Systems (Ulm)
- GPU-assisted IDS Acceleration
bachelor thesis
Institute of Distributed Systems (Ulm)
- Determination of Traffic Models for Network Testing
master thesis
Institute of Distributed Systems (Ulm)
- Extension and Evaluation of the General Purpose Network Testing Framework
bachelor thesis
Institute of Distributed Systems (Ulm)
- Anwendung des Zero Trust Modells auf das Forschungsnetz Baden-Württembergs
master thesis
Institute of Distributed Systems (Ulm)
- Merging and Evaluating Frameworks for SDN-Assisted DDoS-Mitigation
master thesis
Institute of Distributed Systems (Ulm)
- Entwicklung eines Modells zur Generierung von Testnetzwerken
bachelor thesis
Institute of Distributed Systems (Ulm)
- DoS-Attack and Mitigation on TCP Congestion Control Algorithm Coexistence
student project
Institute of Distributed Systems (Ulm)
- Extending the GPU-Assisted IDS Evaluation
student project
Institute of Distributed Systems (Ulm)
- Adaptation of an SDN-based DDoS mitigation system from a hardware deployment to a virtualized environment based on Mininet
internship
Institute of Distributed Systems (Ulm)
- Implementation of a two factor authentication mechanism in form of a mobile app for android and a web site
internship
Institute of Distributed Systems (Ulm)
- Separierung inkompatibler TCP Staukontrollmechanismen mithilfe von Software-defined Networking
master thesis
Institute of Telematics (KIT)
03. May 2015
- Evaluation des multipath Staukontrollverfahrens wVegas
bachelor thesis
Institute of Telematics (KIT)
15. July 2015
- Erweiterung des LEDBAT-Algorithmus um explizite Signalisierung von Warteschlangenverzögerung
bachelor thesis
Institute of Telematics (KIT)
29. May 2015
- Implementation of Active Queue Management Schemes for DPDK and Approaches for their Evaluation in High-Speed Networks
master thesis
Institute of Telematics (KIT)
01. December 2015
- Performance Evaluation of Modern TCP Variants in High-Speed Networks
Studienarbeit
Institute of Telematics (KIT)
20. January 2016
- Untersuchung von Einflussfaktoren auf Experimente für Hochgeschwindigkeitsdatentransport über TCP
bachelor thesis
Institute of Telematics (KIT)
15. July 2016
- Auslastungsbasiertes Staukontrollverfahren mit Router-Feedback
bachelor thesis
Institute of Telematics (KIT)
15. July 2016
- Entwurf und Implementierung von flexiblen expliziten Rückmeldungsmechanismen zur Staukontrolle
bachelor thesis
Institute of Telematics (KIT)
30. September 2016
- Erweiterung einer DPDK-basierten AQM-Testumgebung um Scheduling-Funktionalitäten
Studienarbeit
Institute of Telematics (KIT)
30. September 2016
- Koexistenz unterschiedlicher Staukontrollverfahren mithilfe von Active Queue Management
bachelor thesis
Institute of Telematics (KIT)
11. November 2016
- Congestion Control with Low and Bounded Delays for 10 Gbit/s and Beyond
bachelor thesis
Institute of Telematics (KIT)
21. November 2016
- Explicit Congestion Feedback for TCP LoLa
master thesis
Institute of Telematics (KIT)
12. Juni 2019
- Multi-Bottleneck-Unterstützung für das LoLa-X Staukontrollverfahren
master thesis
Institute of Telematics (KIT)
25. April 2019
- Konzept und Prototyp für das IP Interworking von Highspeed-Zonen im BelWü-Netz mit Hilfe von OpenFlow-basiertem Software-Defined Networking
master thesis
Communication Networks (Tübingen)
01.02.2016
- Authentifizierung und Autorisierung in kabelgebundenen OpenFlow-basierten Campus-Netzwerken mit 802.1X als Netzwerkapplikation
master thesis
Communication Networks (Tübingen)
17.06.2016
- Design eines Firewall-Bypasses zur Firewall-Entlastung und Implemenierung eines Prototypen mit Hilfe von OpenFlow und sFlow
master thesis
Communication Networks (Tübingen)
14.03.2017
- Increasing SDN Control Plane Scalability and Robustness through TCP Anycast, Stateless Controllers, and State Maintenance in Distributed Databases
master thesis
Communication Networks (Tübingen)
09.11.2017
- Anwendungsspezifische Authentifizierung und Autorisierung in Software-Defined Netzwerken mittels 802.1X und Docker Containern
master thesis
Communication Networks (Tübingen)
31.12.2017
- Implementierung eines reduzierten OpenFlow Controller für Firewall Bypassing in der Praxis
master thesis
Communication Networks (Tübingen)
28.02.2018
- Design and Implementation of Automated MACsec-Encryption in Ethernet Networks Using P4-Based Software-Defined Networking
master thesis
Communication Networks (Tübingen)
21.06.2018
- P4-VPN: Software-Defined Control of Distributed IPsec Gateways on P4 Switches
Masterarbeit
Communication Networks (Tübingen)
30.09.2018
- Entwurf, Implementierung und Leistungsuntersuchung von Online-Erkennungsalgorithmen für Sprachverkehr auf P4 Switches
master thesis
Communication Networks (Tübingen)
30.09.2019
- Automated Deployment of IPsec, MACsec and 802.1X Authentication and Authorization for P4-based Distributed Enterprise and Campus Networks
master thesis
Communication Networks (Tübingen)
2019