LoRDMA: A New Low-Rate DoS Attack in RDMA Networks
Shicheng Wang
Network and Distributed System Security (NDSS) Symposium 2024 · Day 3 · Network & DDoS
The proliferation of Remote Direct Memory Access (RDMA) from private data centers into multi-tenant cloud environments has ushered in unprecedented performance benefits, primarily by enabling direct memory-to-memory communication that bypasses the CPU and traditional network stack. While this paradigm, particularly with RoCEv2 encapsulating InfiniBand over UDP, delivers ultra-low latency and high throughput, it also introduces a new frontier for security vulnerabilities, especially concerning the network's traffic control mechanisms. This talk, presented by Shicheng Wang at the NDSS Symposium, unveils a novel low-rate Denial-of-Service (DoS) attack named LoRDMA, which specifically targets the interplay between Priority-based Flow Control (PFC) and Datacenter QCN (DCQCN) in RDMA networks.