Research and innovative services for a flexible 100G-network in Baden-Wuerttemberg
en

Table of Contents

Publications

List of publications ordered by date (beginning with the latest):

  1. xRAC: Execution and Access Control for Restricted Application Containers on Managed Hosts
    Frederik Hauser, Mark Schmidt, Michael Menth
    2019
    https://arxiv.org/pdf/1907.03544

  2. P4-MACsec: Dynamic Topology Monitoring and Data Layer Protection with MACsec in P4-SDN
    Frederik Hauser, Mark Schmidt, Marco Häberle, Michael Menth
    2019
    https://arxiv.org/pdf/1904.07088

  3. P4-IPsec: Implementation of IPsec Gateways in P4 with SDN Control for Host-to-Site Scenarios
    Frederik Hauser, Marco Häberle, Mark Schmidt, Michael Menth
    2019
    https://arxiv.org/pdf/1907.03593

  4. TCP at 100 Gbit/s — Tuning, Limitations, Congestion Control
    Mario Hock, Maxime Veit, Felix Neumeister, Roland Bless, Martina Zitterbart
    October 2019
    IEEE 44th Conference on Local Computer Networks (LCN)

  5. An SDN-based Approach For Defending Against Reflective DDoS Attacks
    Thomas Lukaseder, Kevin Stölzle, Stephan Kleber, Benjamin Erb, Frank Kargl
    October 2018
    IEEE LCN'18
    https://ieeexplore.ieee.org/document/8638036

  6. Mitigation of Flooding and Slow DDoS Attacks in a Software-Defined Network
    Thomas Lukaseder, Shreya Ghosh, Frank Kargl
    October 2018
    IEEE LCN'18 (Demo Track)
    https://arxiv.org/abs/1808.05357

  7. SDN-Assisted Network-Based Mitigation of Slow DDoS Attacks
    Thomas Lukaseder, Lisa Maile, Benjamin Erb, Frank Kargl
    August 2018
    SecureComm'18
    https://link.springer.com/chapter/10.1007/978-3-030-01704-0_6

  8. Performance Evaluation in High-Speed Networks by the Example of Intrusion Detection Systems
    Thomas Lukaseder, Jessika Fiedler, Frank Kargl
    Juni 2018
    11. DFN-Forum Kommunikationstechnologien
    https://dl.gi.de/handle/20.500.12116/16576

  9. OFFWall: A Static OpenFlow-Based Firewall Bypass
    B. Germann, M. Schmidt, A. Stockmayer, and M. Menth
    2018
    11th DFN-Forum Kommunikationstechnologien
    https://dl.gi.de/handle/20.500.12116/16577

  10. Policy-oriented AQM Steering
    Roland Bless, Mario Hock, Martina Zitterbart
    May 2018
    IFIP Networking Conference
    https://ieeexplore.ieee.org/document/8696627

  11. LoCoSDN: A Local Controller for Operation of OF Switches in non-SDN Networks
    M. Schmidt, F. Hauser, B. Germann, and M. Menth
    2018
    5th IEEE International Conference on Software-Defined Systems (SDS)
    https://atlas.informatik.uni-tuebingen.de/~menth/papers/Menth18f.pdf

  12. A Software-Defined Firewall Bypass for Congestion Offloading
    F. Heimgaertner, M. Schmidt, D. Morgenstern, and M. Menth
    2017
    International Conference on Network and Service Management (CNSM)
    https://atlas.informatik.uni-tuebingen.de/~menth/papers/Menth17k.pdf

  13. Experimental Evaluation of BBR Congestion Control
    Mario Hock, Roland Bless, Martina Zitterbart
    October 2017
    IEEE ICNP'17
    http://doc.tm.kit.edu/2017-kit-icnp-bbr-authors-copy.pdf

  14. TCP LoLa: Congestion Control for Low Latencies and High Throughput
    Mario Hock, Felix Neumeister, Martina Zitterbart, Roland Bless
    October 2017
    IEEE LCN'17
    https://doi.org/10.1109/LCN.2017.42, http://doc.tm.kit.edu/2017-LCN-lola-paper-authors-copy.pdf

  15. Demo: Coexistence of Low Delay and Loss-based Congestion Controls in SDN-based Networks
    Mario Hock, Michael König, Roland Bless, Martina Zitterbart
    October 2017
    IEEE LCN'17 Demo Session

  16. Establishing a Session Database for SDN Using 802.1X and Multiple Authentication Resources
    Frederik Hauser, Mark Schmidt, Michael Menth
    2017
    ICC 2017
    https://atlas.informatik.uni-tuebingen.de/~menth/papers/Menth17e.pdf

  17. An Extensible Host-Agnostic Framework for SDN-Assisted DDoS-Mitigation
    Lukaseder, Thomas; Hunt, Alexander; Stehle, Christian; Wagner, Denis; van der Heijden, Rens W. und Kargl, Frank
    Oktober 2017
    IEEE LCN'17
    https://doi.org/10.1109/LCN.2017.42

  18. A Testing Framework for High-Speed Network and Security Devices
    Bradatsch, Leonard; Lukaseder, Thomas; Kargl, Frank
    Oktober 2017
    IEEE LCN'17
    https://ieeexplore.ieee.org/document/8109394

  19. SDN-Assisted Network-Based Mitigation of Slow HTTP Attacks
    Lukaseder, Thomas; Maile, Lisa; Kargl, Frank
    Oktober 2017
    1. KuVS Fachgespräch “Network Softwarization” – From Research to Application
    https://publikationen.uni-tuebingen.de/xmlui/handle/10900/78143

  20. Security Challenges and Opportunities of Software-Defined Networking
    Marc C. Dacier, Hartmut Konig, Radoslaw Cwalinski, Frank Kargl, Sven Dietrich
    2017
    IEEE Security & Privacy, vol. 15
    https://www.computer.org/csdl/mags/sp/2017/02/msp2017020096-abs.html

  21. Establishing a Session Database for SDN Using 802.1X and Multiple Authentication Resources
    Frederik Hauser, Mark Schmidt, Michael Menth
    2017
    ICC 2017
    https://atlas.informatik.uni-tuebingen.de/~menth/papers/Menth17e.pdf

  22. Network Attack Detection and Defense (Dagstuhl Seminar 16361)
    Dacier, Marc C. ; Dietrich, Sven ; Kargl, Frank ; König, Hartmut
    2017
    Dagstuhl Report
    http://drops.dagstuhl.de/opus/volltexte/2017/6912/

  23. Toward Coexistence of Different Congestion Control Mechanisms
    Mario Hock, Roland Bless, Martina Zitterbart
    November 2016
    IEEE LCN'16
    https://doi.org/10.1109/LCN.2016.94

  24. Setting Up a High-Speed TCP Benchmarking Environment—Lessons Learned
    Lukaseder, Thomas; Bradatsch, Leonard; Erb, Benjamin und Kargl, Frank
    November 2016
    IEEE LCN'16
    http://ieeexplore.ieee.org/document/7796775/

  25. A Comparison of TCP Congestion Control Algorithms in 10G Networks
    Lukaseder, Thomas; Bradatsch, Leonard; Erb, Benjamin; van der Heijden, Rens W. und Kargl, Frank
    November 2016
    IEEE LCN'16
    http://ieeexplore.ieee.org/document/7796870/

  26. OpenFlow-Based Integration of Highspeed Zones in the BelWü ISP Network for Interconnection of University Campuses
    Mark Schmidt, Michael Menth, Robert Finze,
    Daniel Reutter, Sebastian Neuner, Tim Kleefass
    Oktober 2016
    IEEE Communications Magazine
    Special Issue „SDN Use Cases for Service Provider Networks“

  27. Demo: Resilient Integration of Distributed High-Performance Zones into the BelWue Network Using OpenFlow
    Mark Schmidt, Robert Finze,
    Daniel Reutter, Michael Menth
    September 2016
    ITC16

  28. OpenFlow-Based Integration of Highspeed Zones in the BelWü ISP Network for Interconnection of University Campuses
    Mark Schmidt
    Februar 2016
    ITG 5.2.1, Heidelberg

  29. Koexistenz nicht-kompatibler TCP-Varianten in softwaredefinierten Netzen
    Mario Hock, Mario Willems
    September 2015
    8. GI/ITG-Workshop MMBnet 2015

  30. Bericht zum Stand der Technik
    Mario Hock, Thomas Lukaseder, Mark Schmidt, Frank Kargl, Michael Menth und Martina Zitterbart
    Juli 2015
    hock2015.pdf

Acknowledgement-Text in publications: 

 This work was supported by the bwNET100G+ project, which is funded by the
 Ministry of Science, Research and the Arts Baden-Württemberg (MWK). The
 authors alone are responsible for the content of this paper.

Collegiate Work

  1. Verhalten von TCP in Hochgeschwindigkeitsnetzen
    bachelor thesis
    Institute of Distributed Systems (Ulm)
    11. September 2015

  2. Accelerating Network Intrusion Detection Using a NetFPGA Pre-Filter
    master thesis
    Institute of Distributed Systems (Ulm)
    14. September 2015

  3. Erkennung und Abwehr von Denial of Service Attacken mit Hilfe von Software Defined Networking
    bachelor thesis
    Institute of Distributed Systems (Ulm)
    17. March 2016

  4. Erstellung eines dynamischen Testdatensets zur Sicherheitsanalyse
    master thesis
    Institute of Distributed Systems (Ulm)
    8. July 2016

  5. General Purpose Network Testing Framework (GPNTF)
    student project
    Institute of Distributed Systems (Ulm)
    14. August 2016

  6. Implementation of a Pre-Filter for Network Intrusion Detection Systems
    diploma thesis
    Institute of Distributed Systems (Ulm)
    28. September 2016

  7. Entwicklung einer RegEx Engine für den FPGA-Einsatz
    student project
    Institute of Distributed Systems (Ulm)
    10. Oktober 2016

  8. Performance Evaluation of Intrusion Detection Systems
    student project
    Institute of Distributed Systems (Ulm)
    28. April 2017

  9. Extending the SDN-Assisted DDoS Mitigation Framework
    student project
    Institute of Distributed Systems (Ulm)
    28. April 2017

  10. DoS-Attacks on Coexistence-Mechanisms for TCP-Variants
    bachelor thesis
    Institute of Distributed Systems (Ulm)
    2. Mai 2017

  11. SDN-Assisted DoS Mitigation
    student project
    Institute of Distributed Systems (Ulm)
    24. Juni 2017

  12. SDN Assisted Distributed DDoS Attack Mitigation
    bachelor thesis
    Institute of Distributed Systems (Ulm)
    30. August 2017

  13. Defending Against DRDoS Attacks in a High-Speed Network Using an SDN-based Approach
    master thesis
    Institute of Distributed Systems (Ulm)
    18. Oktober 2017

  14. DDoS-Detection based on Traffic Analysis
    bachelor thesis
    Institute of Distributed Systems (Ulm)

  15. GPU-assisted IDS Acceleration
    bachelor thesis
    Institute of Distributed Systems (Ulm)

  16. Determination of Traffic Models for Network Testing
    master thesis
    Institute of Distributed Systems (Ulm)

  17. Extension and Evaluation of the General Purpose Network Testing Framework
    bachelor thesis
    Institute of Distributed Systems (Ulm)

  18. Anwendung des Zero Trust Modells auf das Forschungsnetz Baden-Württembergs
    master thesis
    Institute of Distributed Systems (Ulm)

  19. Merging and Evaluating Frameworks for SDN-Assisted DDoS-Mitigation
    master thesis
    Institute of Distributed Systems (Ulm)

  20. Entwicklung eines Modells zur Generierung von Testnetzwerken
    bachelor thesis
    Institute of Distributed Systems (Ulm)

  21. DoS-Attack and Mitigation on TCP Congestion Control Algorithm Coexistence
    student project
    Institute of Distributed Systems (Ulm)

  22. Extending the GPU-Assisted IDS Evaluation
    student project
    Institute of Distributed Systems (Ulm)

  23. Adaptation of an SDN-based DDoS mitigation system from a hardware deployment to a virtualized environment based on Mininet
    internship
    Institute of Distributed Systems (Ulm)

  24. Implementation of a two factor authentication mechanism in form of a mobile app for android and a web site
    internship
    Institute of Distributed Systems (Ulm)

  25. Separierung inkompatibler TCP Staukontrollmechanismen mithilfe von Software-defined Networking
    master thesis
    Institute of Telematics (KIT)
    03. May 2015

  26. Evaluation des multipath Staukontrollverfahrens wVegas
    bachelor thesis
    Institute of Telematics (KIT)
    15. July 2015

  27. Erweiterung des LEDBAT-Algorithmus um explizite Signalisierung von Warteschlangenverzögerung
    bachelor thesis
    Institute of Telematics (KIT)
    29. May 2015

  28. Implementation of Active Queue Management Schemes for DPDK and Approaches for their Evaluation in High-Speed Networks
    master thesis
    Institute of Telematics (KIT)
    01. December 2015

  29. Performance Evaluation of Modern TCP Variants in High-Speed Networks
    Studienarbeit
    Institute of Telematics (KIT)
    20. January 2016

  30. Untersuchung von Einflussfaktoren auf Experimente für Hochgeschwindigkeitsdatentransport über TCP
    bachelor thesis
    Institute of Telematics (KIT)
    15. July 2016

  31. Auslastungsbasiertes Staukontrollverfahren mit Router-Feedback
    bachelor thesis
    Institute of Telematics (KIT)
    15. July 2016

  32. Entwurf und Implementierung von flexiblen expliziten Rückmeldungsmechanismen zur Staukontrolle
    bachelor thesis
    Institute of Telematics (KIT)
    30. September 2016

  33. Erweiterung einer DPDK-basierten AQM-Testumgebung um Scheduling-Funktionalitäten
    Studienarbeit
    Institute of Telematics (KIT)
    30. September 2016

  34. Koexistenz unterschiedlicher Staukontrollverfahren mithilfe von Active Queue Management
    bachelor thesis
    Institute of Telematics (KIT)
    11. November 2016

  35. Congestion Control with Low and Bounded Delays for 10 Gbit/s and Beyond
    bachelor thesis
    Institute of Telematics (KIT)
    21. November 2016

  36. Explicit Congestion Feedback for TCP LoLa
    master thesis
    Institute of Telematics (KIT)
    12. Juni 2019

  37. Multi-Bottleneck-Unterstützung für das LoLa-X Staukontrollverfahren
    master thesis
    Institute of Telematics (KIT)
    25. April 2019

  38. Konzept und Prototyp für das IP Interworking von Highspeed-Zonen im BelWü-Netz mit Hilfe von OpenFlow-basiertem Software-Defined Networking
    master thesis
    Communication Networks (Tübingen)
    01.02.2016

  39. Authentifizierung und Autorisierung in kabelgebundenen OpenFlow-basierten Campus-Netzwerken mit 802.1X als Netzwerkapplikation
    master thesis
    Communication Networks (Tübingen)
    17.06.2016

  40. Design eines Firewall-Bypasses zur Firewall-Entlastung und Implemenierung eines Prototypen mit Hilfe von OpenFlow und sFlow
    master thesis
    Communication Networks (Tübingen)
    14.03.2017

  41. Increasing SDN Control Plane Scalability and Robustness through TCP Anycast, Stateless Controllers, and State Maintenance in Distributed Databases
    master thesis
    Communication Networks (Tübingen)
    09.11.2017

  42. Anwendungsspezifische Authentifizierung und Autorisierung in Software-Defined Netzwerken mittels 802.1X und Docker Containern
    master thesis
    Communication Networks (Tübingen)
    31.12.2017

  43. Implementierung eines reduzierten OpenFlow Controller für Firewall Bypassing in der Praxis
    master thesis
    Communication Networks (Tübingen)
    28.02.2018

  44. Design and Implementation of Automated MACsec-Encryption in Ethernet Networks Using P4-Based Software-Defined Networking
    master thesis
    Communication Networks (Tübingen)
    21.06.2018

  45. P4-VPN: Software-Defined Control of Distributed IPsec Gateways on P4 Switches
    Masterarbeit
    Communication Networks (Tübingen)
    30.09.2018

  46. Entwurf, Implementierung und Leistungsuntersuchung von Online-Erkennungsalgorithmen für Sprachverkehr auf P4 Switches
    master thesis
    Communication Networks (Tübingen)
    30.09.2019

  47. Automated Deployment of IPsec, MACsec and 802.1X Authentication and Authorization for P4-based Distributed Enterprise and Campus Networks
    master thesis
    Communication Networks (Tübingen)
    2019

Technical Reports

10G-Server Tuning Guide

en/publications.txt · Last modified: 2019/10/15 09:49 by Thomas Lukaseder