MiddlePolice - Toward Enforcing Destination-Defined Policies in the Middle of the Internet

Explore a conference talk from CCS 2016 that introduces MiddlePolice, a novel approach to enforcing destination-defined policies in the middle of the Internet. Delve into the challenges of Distributed Denial of Service attacks and examine commercial solutions, their advantages, and limitations. Gain insights into network capabilities and the MiddlePolice architecture, including its challenges and capabilities. Learn how to avoid underestimates, accept packets, bypass traffic throttle, and validate sources. Discover the implementation and evaluation of MiddlePolice, covering aspects such as path length inflation, latency, fair share, and reactive attacks. Conclude with an understanding of premium support options and the potential impact of this innovative approach to Internet security.

Introduction
Distributed Denial of Service
Commercial Solutions
Advantages and Limitations
Network Capabilities
MiddlePolice
Architecture
Challenges
Capabilities
How to avoid underestimates
How to accept a packet
Bypass traffic throttle
Validate a source
Implementation
Evaluation
Path Length Inflation
Latency
Fair Share
Reactive Attacks
Premium Support
Conclusion