Revisiting Traffic Anomaly Detection Using Software Defined Networking

机译：使用软件定义的网络重新访问流量异常检测

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Despite their exponential growth, home and small office/home office networks continue to be poorly managed. Consequently, security of hosts in most home networks is easily compromised and these hosts are in turn used for largescale malicious activities without the home users' knowledge. We argue that the advent of Software Defined Networking (SDN) provides a unique opportunity to effectively detect and contain network security problems in home and home office networks. We show how four prominent traffic anomaly detection algorithms can be implemented in an SDN context using Openfiow compliant switches and NOX as a controller. Our experiments indicate that these algorithms are significantly more accurate in identifying malicious activities in the home networks as compared to the ISP. Furthermore, the efficiency analysis of our SDN implementations on a programmable home network router indicates that the anomaly detectors can operate at line rates without introducing any performance penalties for the home network traffic.

机译：尽管呈指数级增长，但家庭和小型办公室/家庭办公室网络的管理仍然不佳。因此，大多数家庭网络中的主机的安全性很容易受到损害，并且这些主机又被用于家庭用户不知情的大规模恶意活动。我们认为，软件定义网络（SDN）的出现提供了独特的机会，可以有效地检测和控制家庭和家庭办公室网络中的网络安全问题。我们展示了如何使用兼容Openfiow的交换机和NOX作为控制器，在SDN上下文中实现四种重要的流量异常检测算法。我们的实验表明，与ISP相比，这些算法在识别家庭网络中的恶意活动方面要准确得多。此外，对我们在可编程家庭网络路由器上的SDN实施的效率分析表明，异常检测器可以以线路速率运行，而不会对家庭网络流量造成任何性能损失。

著录项

来源
《Recent advances in intrusion detection》|2011年|p.161-180|共20页
会议地点 Menlo Park CA(US);Menlo Park CA(US)
作者
Syed Akbar Mehdi; Junaid Khalid; Syed Ali Khayam;
展开▼
作者单位

School of Electrical Engineering and Computer Science National University of Sciences and Technology (NUST) Islamabad, Pakistan;

School of Electrical Engineering and Computer Science National University of Sciences and Technology (NUST) Islamabad, Pakistan;

School of Electrical Engineering and Computer Science National University of Sciences and Technology (NUST) Islamabad, Pakistan,XFlow Research Santa Clara, CA 95051, USA;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类安全保密;
关键词
anomaly detection; network security; software defined networking; programmable networks; openfiow;

机译：异常检测；网络安全;软件定义的网络；可编程网络；开放流;

相似文献

外文文献
中文文献
专利

1. Software-Defined-Networking-Enabled Traffic Anomaly Detection and Mitigation [J] . Daojing He, Sammy Chan, Xiejun Ni, Internet of Things Journal, IEEE . 2017,第6期

机译：启用软件定义网络的流量异常检测和缓解
2. Robust and Agile System against Fault and Anomaly Traffic in Software Defined Networks [J] . Mihui Kim, Younghee Park, Rohit Kotalwar Applied Sciences . 2017,第3期

机译：软件定义网络中针对故障和异常流量的强大而敏捷的系统
3. Robust and Agile System against Fault and Anomaly Traffic in Software Defined Networks [J] . Mihui Kim, Younghee Park, Rohit Kotalwar Applied Sciences . 2017,第3期

机译：软件定义网络中针对故障和异常流量的强大而敏捷的系统
4. Revisiting Traffic Anomaly Detection Using Software Defined Networking [C] . Syed Akbar Mehdi, Junaid Khalid, Syed Ali Khayam International symposium on recent advances in intrusion detection . 2011

机译：使用软件定义的网络重新审视流量异常检测
5. Traffic Engineering with Routing Protocols Using Software Defined Networking and Network Functions Virtualization Architecture. [D] . Bokkena, Bhargava. 2017

机译：使用软件定义的网络和网络功能虚拟化体系结构的具有路由协议的流量工程。
6. A Software Deep Packet Inspection System for Network Traffic Analysis and Anomaly Detection [O] . Wenguang Song, Mykola Beshley, Krzysztof Przystupa, 2020

机译：用于网络流量分析和异常检测的软件深度包检查系统
7. Robust and Agile System against Fault and Anomaly Traffic in Software Defined Networks [O] . Mihui Kim, Younghee Park, Rohit Kotalwar 2017

机译：软件定义网络中故障和异常流量的鲁棒敏捷系统
8. Analysis of Traffic Signals on a Software-Defined Network for Detection and Classification of a Man-in-the-Middle Attack. [R] . D'Orsaneo, J. N. 2017

机译：用于检测和分类中间人攻击的软件定义网络上的交通信号分析。

Revisiting Traffic Anomaly Detection Using Software Defined Networking

摘要

著录项

相似文献

相关主题

期刊订阅