Research & Academic
Guardicore Labs is committed to innovation and collaboration. Together with our academy colleagues, we lead and participate in research projects in the fields of network security, analytics and fault tolerance.
Application Clustering: Machine Learning Approach to Datacenter Network Abstraction
NetSlicer: Automated and Traffic-Pattern Based Application Clustering in Datacenters
Teleportation Attacks: Vulnerability in the SDN Architecture
Software-defined networking (SDN) is considered a promising new paradigm, enabling more reliable and formally verifiable communication networks. Our research shows that what forms the basis for SDN – the separation of the control plane from the data plane – is vulnerable to an attack we are referring to as teleportation. An attacker, e.g., a malicious switch or a host, can transmit (“teleport”) information via the control plane, bypassing critical network functions in the data plane (e.g., a firewall), and violate security policies as well as logical and even physical separations.
Outsmarting Network Security with SDN Teleportation
Kashyap Thimmaraju (TU Berlin/T-Labs, Germany), Liron Schiff (Guardicore, Israel), and Stefan Schmid (AAU, Denmark and Univie, Austria)
2nd IEEE European Symposium on Security and Privacy (EuroS&P), Paris, France, April 2017
See also CVE-2015-7516
Documents: [paper pdf], [slides pdf], [demo video], [bibtex bib]
I DPID It My Way! A Covert Timing Channel in Software-Defined Networks
SDN Robustness: Self Stabilization and Fault Tolerance
Software-defined network (SDN) architectures raise the question of how to deal with situations where the round trip via the control plane is not fast enough or not possible. In order to provide a high availability, connectivity, and robustness, dependable SDNs must support basic functionality also in the data plane. In our research we show how to extend SDNs with functionality for self-stabilizing in-band control and failover routing in the presence of link failures.