A kangaroo-based intrusion detection system on software-defined networks

Yazdinejadna A.; Dehghantanha A.; Parizi R.M.; Khan M.S.

首页> 外文期刊>Computer networks >A kangaroo-based intrusion detection system on software-defined networks

【24h】

A kangaroo-based intrusion detection system on software-defined networks

机译：基于Kangaroo的入侵检测系统在软件定义的网络上

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

In recent years, a new generation of architecture has emerged in the world of computer networks, known as software-defined networking (SDN), that aims to improve and remove the limitations of traditional networks. Although SDN provides viable benefits, it has faced many security threats and vulnerability-related issues. To solve security issues in the SDN, one of the most vital solutions is employing an intrusion detection system (IDS). Merging IDS into the SDN network remains efficient due to the unique features of SDN, such as high manageability, flexibility, and programmability. In this paper, we propose a new approach as a kangaroo-based intrusion detection system (KIDS), which is an SDN-based architecture for attack detection and malicious behaviors in the data plane. Designing a zone-based architecture in the KIDS assists us in achieving a distributed architecture which is scalable in both area and anomaly detection. In the KIDS architecture, the IDS module supplies the flow-based and packet-based intrusion detection components based on monitoring packet parser and Flow tables of the SDN switches. In the proposed approach, the IDS uses consecutive jumps like a kangaroo for announcing the attacks both to the SDN controller and other IDSs, contributing to improved scalability and efficiency. The evaluation of the proposed approach shows an enhanced performance against that of peer approaches in detecting malicious packets.

机译：近年来，在计算机网络世界中出现了新一代的架构，称为软件定义的网络（SDN），旨在提高和消除传统网络的局限性。虽然SDN提供了可行的福利，但它面临许多安全威胁和漏洞相关的问题。为了解决SDN中的安全问题，最重要的解决方案之一是采用入侵检测系统（IDS）。由于SDN的独特特征，例如高可管理性，灵活性和可编程性，将ID合并到SDN网络中保持有效。在本文中，我们提出了一种作为基于袋鼠的入侵检测系统（儿童）的新方法，它是基于SDN的架构，用于数据平面中的攻击检测和恶意行为。设计儿童区域的架构有助于我们实现在区域和异常检测中可扩展的分布式架构。在儿童架构中，IDS模块基于监视分组解析器和SDN交换机的流量表提供基于流基的和数据包的入侵检测组件。在所提出的方法中，IDS使用连续跳跃，如kangaroo，用于宣布SDN控制器和其他IDS的攻击，有助于提高可扩展性和效率。对所提出的方法的评估表明，在检测恶意数据包方面的对等方法方面的性能提高。

著录项

来源
《Computer networks》 |2021年第15期|107688.1-107688.13|共13页
作者
Yazdinejadna A.; Dehghantanha A.; Parizi R.M.; Khan M.S.;
展开▼
作者单位

Cyber Science Lab School of Computer Science University of Guelph Ontario Canada;

College of Computing and Software Engineering Kennesaw State University GA USA;

Cyber Science Lab School of Computer Science University of Guelph Ontario Canada;

Department of Computer & Information Sciences East Tennessee State University Johnson City USA;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Attack detection; Flow table; IDS; Intrusion detection system; KIDS; Packet parser; SDN; Software defined networking;

机译：攻击检测;流动表;IDS;入侵检测系统;孩子;包解析器;SDN;软件定义网络;

相似文献

外文文献
中文文献
专利

1. Suspicious Flow Forwarding for Multiple Intrusion Detection Systems on Software-Defined Networks [J] . Taejin Ha, Seunghyun Yoon, Aris Cahyadi Risdianto, IEEE Network . 2016,第6期

机译：软件定义网络上多个入侵检测系统的可疑流转发
2. Implementing an intrusion detection and prevention system using software-defined networking: Defending against port-scanning and denial-of-service attacks [J] . Birkinshaw Celyn, Rouka Elpida, Vassilakis Vassilios G. Journal of network and computer applications . 2019,第JUNa期

机译：使用软件定义的网络实施入侵检测和防御系统：防御端口扫描和拒绝服务攻击
3. Implementing an intrusion detection and prevention system using software-defined networking: Defending against port-scanning and denial-of-service attacks [J] . Birkinshaw Celyn, Rouka Elpida, Vassilakis Vassilios G. Journal of network and computer applications . 2019,第Juna期

机译：使用软件定义网络实现入侵检测和预防系统：防御端口扫描和拒绝服务攻击
4. Flexible Network-Based Intrusion Detection and Prevention System on Software-Defined Networks [C] . An Le, Phuong Dinh, Hoa Le, International Conference on Advanced Computing and Applications . 2015

机译：基于软件定义网络的灵活的基于网络的入侵检测和防御系统
5. Design and Implementation of a Deep Learning based Intrusion Detection System in Software-Defined Networking Environment [D] . Niyaz, Quamar. 2017

机译：软件定义网络环境下基于深度学习的入侵检测系统的设计与实现
6. Integrating Software Engineering Processes in the Development of Efficient Intrusion Detection Systems in Wireless Sensor Networks [O] . Iman Almomani, Afnan Alromi 2020

机译：在无线传感器网络中高效的入侵检测系统开发中集成软件工程流程
7. An efficient flow-based multi-level hybrid intrusion detection system for software-defined networks [O] . Majd Latah, Levent Toker 2020

机译：用于软件定义网络的有效流动的多级混合入侵检测系统

A kangaroo-based intrusion detection system on software-defined networks

摘要

著录项

相似文献

相关主题

期刊订阅