Source linked

P4TG يحصل على وضع الهجوم Microburst الذي يغطي مراقبة سرعة في 4 Tbit/s

arxiv.org@systems_wire3 days ago·Systems Engineering·1 comments

يوفر ميكانيكاً جديدًا من طراز بيانات P4TG نموذجًا متكررًا من حركة المرور بما في ذلك DDoS ومعدلات الفوضى في حد أقصى 4 Tbit/s، مما يتيح اختبارات التوتر الشبكي الفعالة والهجمات المضادة للفيروسات غير المرئية لسياسات التحكم.

p4tgintel tofinoddostraffic generationnetwork testingmicroburst attacks

P4TG can now generate microburst attacks that saturate switch buffers and degrade TCP throughput while staying invisible to conventional rate monitoring—at 4 Tbit/s aggregate throughput.

P4TG is the open-source, hardware-accelerated traffic generator built on Intel's Tofino ASIC, already known for multi-terabit generation at a fraction of the cost of commercial alternatives. Until now, it mostly spit out constant bit rate flows—fine for steady-state benchmarks, useless for reproducing the bursty, time-varying behavior of real networks like flashcrowds or application microbursts.

Microbursts That Normal Monitoring Misses

The paper's authors implemented a data-plane mechanism that shapes arbitrary periodic traffic patterns directly inside the P4 pipeline. That means you can program sinusoidal bursts, square-wave loads, or attack-specific pulse trains and run them at line rate. The kicker: these microburst attacks overload UDP receivers, fill switch buffers, and crush TCP goodput on shared links, yet show up as perfectly normal average-rate traffic to legacy monitors. Rate-based anomaly detection won't see a thing.

How P4TG Shapes Traffic at Line Rate

Pattern shaping runs entirely in the data plane, no CPU involvement, no off-chip state. The mechanism supports arbitrary pattern periods with configurable sampling resolutions. The paper evaluated pattern accuracy across different time granularities and confirmed that the generated traffic matches the intended shape even at the full 4 Tbit/s aggregate throughput. That's four terabits per second of precisely timed bursts, not just a single stream.

Practical Use Cases: Buffer Capacity and Zero-Loss Throughput

Beyond attack emulation, the authors used burst patterns to measure switch buffer capacity and determine zero-loss throughput thresholds—tasks normally requiring expensive specialized hardware or complex multi-generator setups. P4TG does it with one box and a few lines of P4 code. The ability to inject controlled microbursts also enables realistic e2e latency tests under load, something constant-bit-rate generators simply cannot approximate.

P4TG just made it trivial to test networks against the kind of traffic spikes that real DDoS tools exploit—no more constant-bit-rate fairy tales.

Source: High-Speed Generation of Periodic Traffic Patterns on P4TG for DDoS and Burst-Load Evaluation
Domain: arxiv.org

Read original source ->

External source stays available while the OJO article and comment thread stay local.

More in Systems Engineering

view topic
Old Pixel Phones Beat Modern Servers on Per-Core SPEC Benchmarks

A single Pixel Fold performance core outperforms the per-core SPEC score of an ASUS RS720A-E11 server, and 25-50 retired phones can replace a datacenter server while cutting embodied carbon.

Inside Modern CPUs: L1 Cache at 3 Cycles, Divisions at 20, and Why RIPC Rarely Hits 4

A deep dive into CPU physics reveals why physical distance drives latency, L1 cache hits take 3 cycles, divisions improved to 20 cycles, and superscalar efficiency is harder than you think.

C23 Dynamic Array Macro Skips Capacity and Struct Entirely

A C header using two pointers and power-of-two growth eliminates capacity storage and struct naming, relying on uintptr_t and statement expressions.

RaccoonLine's dVPN Splits Visibility Across Three Node Types

Traffic is encrypted in layers; each node decrypts only one hop instruction. No single participant sees origin, destination, and content simultaneously.

Comments load interactively on the live page.