The first SCION book, published in 2017, summarized the results of eight years of work by
over a dozen researchers. Now, five years later, we have completely rewritten the book. It …

The SCION project started in Summer 2009 at Carnegie Mellon University (CMU), when we
began meeting weekly with Haowen Chan, Hsu-Chun Hsiao, and **n Zhang to consider …

This paper presents the design and implementation of a filter-based DoS defense system
(StopIt) and a comparison study on the effectiveness of filters and capabilities. Central to the …

Systems using capabilities to provide preferential service to selected flows have been
proposed as a defense against large-scale network denial-of-service attacks. While these …

We describe a new networking primitive, called a Path Verification Mechanism (pvm). There
has been much recent work about how senders and receivers express policies about the …

Much effort has been made in integrating different information in a variational framework to
segment images. Recent works on curve propagation were able to incorporate stochastic …

We motivate the capability approach to network denial-of-service (DoS) attacks, and
evaluate the traffic validation architecture (TVA) architecture which builds on capabilities …

This paper proposes a Scalable Internet Bandwidth Reservation Architecture (SIBRA) as a
new approach against DDoS attacks, which, until now, continue to be a menace on today's …

Palm vein feature extraction from near infrared images is a challenging problem in hand
pattern recognition. In this paper, a promising new approach based on local texture patterns …

Volumetric attacks, which overwhelm the bandwidth of a destination, are among the most
common distributed denial-of-service (DDoS) attacks today. Despite considerable effort …