# LAMP: Prompt Layer 7 Attack Mitigation with Programmable Data Planes

**Authors:** Garegin Grigoryan, Yaoqing Liu

arXiv: 1812.05647 · 2018-12-17

## TL;DR

LAMP utilizes programmable data planes to detect and mitigate application layer attacks efficiently by reacting to alerts and blocking malicious traffic at the network edge, reducing the need for heavy defense systems on individual hosts.

## Contribution

This work introduces LAMP, a novel approach using P4 programmable data planes to mitigate Layer 7 attacks dynamically at the network edge.

## Key findings

- Effective attack mitigation demonstrated in P4 environment.
- Reduced reliance on host-based defense systems.
- Fast reaction times to attack alerts.

## Abstract

While there are various methods to detect application layer attacks or intrusion attempts on an individual end host, it is not efficient to provide all end hosts in the network with heavy-duty defense systems or software firewalls. In this work, we leverage a new concept of programmable data planes, to directly react on alerts raised by a victim and prevent further attacks on the whole network by blocking the attack at the network edge. We call our design LAMP, Layer 7 Attack Mitigation with Programmable data planes. We implemented LAMP using the P4 data plane programming language and evaluated its effectiveness and efficiency in the Behavioral Model (bmv2) environment.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1812.05647/full.md

## Figures

12 figures with captions in the complete paper: https://tomesphere.com/paper/1812.05647/full.md

## References

17 references — full list in the complete paper: https://tomesphere.com/paper/1812.05647/full.md

---
Source: https://tomesphere.com/paper/1812.05647