Securing SDN controller and switches from attacks

Udaya Tupakula; Vijay Varadharajan; Preeti Mishra

首页> 外文期刊>International Journal of High Performance Computing and Networking >Securing SDN controller and switches from attacks

【24h】

Securing SDN controller and switches from attacks

机译：保护SDN控制器并从攻击切换

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

In this paper, we propose techniques for securing the SDN controller and the switches from malicious end-host attacks. Our model makes use of trusted computing and introspection-based intrusion detection to deal with attacks in SDN. We have developed a security application for the SDN controller to validate the state of the switches in the data plane and enforce the security policies to monitor the virtual machines at system call level and detect attacks. We have developed a feature extraction method named vector of n-grams which represents the traces in an efficient way without losing the ordering of system calls. The flows from the malicious hosts are dropped before they are processed by the switches or forwarded to the SDN controller. Hence, our model protects the switches and the SDN controller from the attacks.

机译：在本文中，我们提出了从恶意最终主机攻击中保护SDN控制器和交换机的技术。我们的模型利用可信计算和基于内省的入侵检测来处理SDN中的攻击。我们已经开发了SDN控制器的安全应用程序，以验证数据平面中的交换机的状态，并强制执行安全策略以在系统调用级别监视虚拟机并检测攻击。我们开发了一个名为N-GRAM的传染媒介的特征提取方法，其以有效的方式表示迹线而不丢失系统调用的排序。在由交换机处理或转发到SDN控制器之前，删除来自恶意主机的流程。因此，我们的模型可以保护交换机和SDN控制器免受攻击。

著录项

来源
《International Journal of High Performance Computing and Networking》 |2019年第1期|共15页
作者
Udaya Tupakula; Vijay Varadharajan; Preeti Mishra;
展开▼
作者单位

Advanced Cyber Security Research Centre Department of Computing Macquarie University;

Advanced Cyber Security Research Centre Department of Computing Macquarie University;

Department of Computer Science and Engineering Malaviya National Institute of Technology;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类计算技术、计算机技术;
关键词
DN security; Trusted computing; Virtual machine introspection; VMI; Machine learning; Security attack;

机译：DN安全;值得信赖的计算;虚拟机内省;VMI;机器学习;安全攻击;

相似文献

外文文献
中文文献
专利

1. Securing SDN controller and switches from attacks [J] . Udaya Tupakula, Vijay Varadharajan, Preeti Mishra International Journal of High Performance Computing and Networking . 2019,第1期

机译：保护SDN控制器并从攻击切换
2. Generating Extension Strategy for Mitigation of DoS Attacks Against SDN Controllers [J] . Hui Xu, Xiang Liu, Juan Yang, International Journal of Performability Engineering . 2018,第8期

机译：对SDN控制器缓解DOS攻击的发行扩展策略
3. Detection of DDoS Attacks Against Wireless SDN Controllers Based on the Fuzzy Synthetic Evaluation Decision-making Model [J] . Yan Qiao, Gong Qingxiang, Deng Fang-an Ad-hoc & sensor wireless networks . 2016,第1a4期

机译：基于模糊综合评价决策模型的无线SDN控制器DDoS攻击检测
4. Motivation of DDOS Attack-Aware Link Assignment between Switches to SDN Controllers [C] . Sameer Ali, Saw Chin Tan, Lee Ching Kwang, International conference on security, privacy, and anonymity in computation, communication, and storage . 2017

机译：交换机之间到SDN控制器之间的DDOS攻击感知链接分配的动机
5. A Practical Framework for Finding Software Vulnerabilities in SDN Controllers [D] . Sharif, Walid. 2017

机译：在SDN控制器中查找软件漏洞的实用框架
6. Cuckoo-PC: An Evolutionary Synchronization-Aware Placement of SDN Controllers for Optimizing the Network Performance in WSNs [O] . Shirin Tahmasebi, Mohadeseh Safi, Somayeh Zolfi, 2020

机译：Cuckoo-PC：用于优化WSN中网络性能的SDN控制器的进化同步感知布局
7. Mitigation of DDoS attack instigated by compromised switches on SDN controller by analyzing the flow rule request traffic [O] . Sanjeetha R, Shikhar Srivastava, Rishab Pokharna, 2018

机译：通过分析流量规则请求流量，通过SDN控制器对SDN控制器的泄露开关来缓解DDOS攻击

Securing SDN controller and switches from attacks

摘要

著录项

相似文献

相关主题

期刊订阅