aBBRate: Automating BBR attack exploration using a model-based approach

Anthony Peterson, Samuel Jero, Endadul Hoque, David Choffnes, Cristina Nita-Rotaru

Research output: Chapter in Book/Entry/PoemConference contribution

3 Scopus citations

Abstract

BBR is a new congestion control algorithm proposed by Google that builds a model of the network path consisting of its bottleneck bandwidth and RTT to govern its sending rate rather than packet loss (like CUBIC and many other popular congestion control algorithms). Loss-based congestion control has been shown to be vulnerable to acknowledgment manipulation attacks. However, no prior work has investigated how to design such attacks for BBR, nor how effective they are in practice. In this paper we systematically analyze the vulnerability of BBR to acknowledgement manipulation attacks. We create the first detailed BBR finite state machine and a novel algorithm for inferring its current BBR state at runtime by passively observing network traffic. We then adapt and apply a TCP fuzzer to the Linux TCP BBR v1.0 implementation. Our approach generated 30,297 attack strategies, of which 8,859 misled BBR about actual network conditions. From these, we identify 5 classes of attacks causing BBR to send faster, slower or stall. We also found that BBR is immune to acknowledgment burst, division and duplication attacks that were previously shown to be effective against loss-based congestion control such as TCP New Reno.

Original languageEnglish (US)
Title of host publicationRAID 2020 Proceedings - 23rd International Symposium on Research in Attacks, Intrusions and Defenses
PublisherUSENIX Association
Pages225-240
Number of pages16
ISBN (Electronic)9781939133182
StatePublished - 2020
Event23rd International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2020 - Virtual, Online
Duration: Oct 14 2020Oct 16 2020

Publication series

NameRAID 2020 Proceedings - 23rd International Symposium on Research in Attacks, Intrusions and Defenses

Conference

Conference23rd International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2020
CityVirtual, Online
Period10/14/2010/16/20

ASJC Scopus subject areas

  • General Computer Science
  • Safety, Risk, Reliability and Quality
  • Law
  • Safety Research

Fingerprint

Dive into the research topics of 'aBBRate: Automating BBR attack exploration using a model-based approach'. Together they form a unique fingerprint.

Cite this