A Framework of Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking

Wenjuan Li; Jiao Tan; Yu Wang

doi:10.1007/978-3-030-65745-1_15

A Framework of Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking

Wenjuan Li, Jiao Tan, Yu Wang

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

15 Citations (Scopus)

Abstract

To protect network assets from various cyber intrusions and fit the distributed environments like Internet of Things (IoTs), collaborative intrusion detection systems (CIDSs) are widely implemented allowing each detection node to exchange required data and information. This aims to improve the detection performance against some complicated attacks. In recent years, software defined networking (SDN) is developing rapidly, which can simplify the network complexity by separating the controller plane from the forwarding plane. In this way, the controller can manage the whole network without knowing the underlying structure and devices. To identify underlying malicious nodes or devices, CIDSs are still an important solution to secure SDN, but might be vulnerable to insider threats, in which an attacker can behave maliciously insider the network. In this work, we focus on this issue and advocate the merit on combining trust management and blockchain technology. Trust management can help evaluate the trustworthiness of each node, and blockchain technology can allow communication without a trusted party while ensuring the integrity of shared data. We then introduce a general framework of blockchain-based collaborative intrusion detection in SDN. In the study, we take challenge-based CIDS as a case, and evaluate our framework performance under both external and internal attacks. Our results indicate the viability and effectiveness of our framework.

Original language	English
Title of host publication	Network and System Security - 14th International Conference, NSS 2020, Proceedings
Editors	Mirosław Kutyłowski, Jun Zhang, Chao Chen
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	261-276
Number of pages	16
ISBN (Print)	9783030657444
DOIs	https://doi.org/10.1007/978-3-030-65745-1_15
Publication status	Published - 2020
Externally published	Yes
Event	14th International Conference on Network and System Security, NSS 2020 - Melbourne, Australia Duration: 25 Nov 2020 → 27 Nov 2020

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	12570 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	14th International Conference on Network and System Security, NSS 2020
Country/Territory	Australia
City	Melbourne
Period	25/11/20 → 27/11/20

Keywords

Blockchain technology
Collaborative intrusion detection
Insider attack
Software defined networking
Trust management

ASJC Scopus subject areas

Theoretical Computer Science
General Computer Science

More information

10.1007/978-3-030-65745-1_15

Cite this

Li, W., Tan, J., & Wang, Y. (2020). A Framework of Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking. In M. Kutyłowski, J. Zhang, & C. Chen (Eds.), Network and System Security - 14th International Conference, NSS 2020, Proceedings (pp. 261-276). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12570 LNCS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-030-65745-1_15

Li, Wenjuan ; Tan, Jiao ; Wang, Yu. / A Framework of Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking. Network and System Security - 14th International Conference, NSS 2020, Proceedings. editor / Mirosław Kutyłowski ; Jun Zhang ; Chao Chen. Springer Science and Business Media Deutschland GmbH, 2020. pp. 261-276 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{ffe3523af8c8445fa77ca629ba396e0a,

title = "A Framework of Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking",

abstract = "To protect network assets from various cyber intrusions and fit the distributed environments like Internet of Things (IoTs), collaborative intrusion detection systems (CIDSs) are widely implemented allowing each detection node to exchange required data and information. This aims to improve the detection performance against some complicated attacks. In recent years, software defined networking (SDN) is developing rapidly, which can simplify the network complexity by separating the controller plane from the forwarding plane. In this way, the controller can manage the whole network without knowing the underlying structure and devices. To identify underlying malicious nodes or devices, CIDSs are still an important solution to secure SDN, but might be vulnerable to insider threats, in which an attacker can behave maliciously insider the network. In this work, we focus on this issue and advocate the merit on combining trust management and blockchain technology. Trust management can help evaluate the trustworthiness of each node, and blockchain technology can allow communication without a trusted party while ensuring the integrity of shared data. We then introduce a general framework of blockchain-based collaborative intrusion detection in SDN. In the study, we take challenge-based CIDS as a case, and evaluate our framework performance under both external and internal attacks. Our results indicate the viability and effectiveness of our framework.",

keywords = "Blockchain technology, Collaborative intrusion detection, Insider attack, Software defined networking, Trust management",

author = "Wenjuan Li and Jiao Tan and Yu Wang",

note = "Funding Information: Acknowledgments. This work was partially supported by National Natural Science Foundation of China (No. 61802080 and 61802077). Publisher Copyright: {\textcopyright} 2020, Springer Nature Switzerland AG.; 14th International Conference on Network and System Security, NSS 2020 ; Conference date: 25-11-2020 Through 27-11-2020",

year = "2020",

doi = "10.1007/978-3-030-65745-1_15",

language = "English",

isbn = "9783030657444",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "261--276",

editor = "Miros{\l}aw Kuty{\l}owski and Jun Zhang and Chao Chen",

booktitle = "Network and System Security - 14th International Conference, NSS 2020, Proceedings",

address = "Germany",

}

Li, W, Tan, J & Wang, Y 2020, A Framework of Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking. in M Kutyłowski, J Zhang & C Chen (eds), Network and System Security - 14th International Conference, NSS 2020, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 12570 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 261-276, 14th International Conference on Network and System Security, NSS 2020, Melbourne, Australia, 25/11/20. https://doi.org/10.1007/978-3-030-65745-1_15

A Framework of Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking. / Li, Wenjuan; Tan, Jiao; Wang, Yu.
Network and System Security - 14th International Conference, NSS 2020, Proceedings. ed. / Mirosław Kutyłowski; Jun Zhang; Chao Chen. Springer Science and Business Media Deutschland GmbH, 2020. p. 261-276 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12570 LNCS).

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

TY - GEN

T1 - A Framework of Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking

AU - Li, Wenjuan

AU - Tan, Jiao

AU - Wang, Yu

N1 - Funding Information: Acknowledgments. This work was partially supported by National Natural Science Foundation of China (No. 61802080 and 61802077). Publisher Copyright: © 2020, Springer Nature Switzerland AG.

PY - 2020

Y1 - 2020

N2 - To protect network assets from various cyber intrusions and fit the distributed environments like Internet of Things (IoTs), collaborative intrusion detection systems (CIDSs) are widely implemented allowing each detection node to exchange required data and information. This aims to improve the detection performance against some complicated attacks. In recent years, software defined networking (SDN) is developing rapidly, which can simplify the network complexity by separating the controller plane from the forwarding plane. In this way, the controller can manage the whole network without knowing the underlying structure and devices. To identify underlying malicious nodes or devices, CIDSs are still an important solution to secure SDN, but might be vulnerable to insider threats, in which an attacker can behave maliciously insider the network. In this work, we focus on this issue and advocate the merit on combining trust management and blockchain technology. Trust management can help evaluate the trustworthiness of each node, and blockchain technology can allow communication without a trusted party while ensuring the integrity of shared data. We then introduce a general framework of blockchain-based collaborative intrusion detection in SDN. In the study, we take challenge-based CIDS as a case, and evaluate our framework performance under both external and internal attacks. Our results indicate the viability and effectiveness of our framework.

AB - To protect network assets from various cyber intrusions and fit the distributed environments like Internet of Things (IoTs), collaborative intrusion detection systems (CIDSs) are widely implemented allowing each detection node to exchange required data and information. This aims to improve the detection performance against some complicated attacks. In recent years, software defined networking (SDN) is developing rapidly, which can simplify the network complexity by separating the controller plane from the forwarding plane. In this way, the controller can manage the whole network without knowing the underlying structure and devices. To identify underlying malicious nodes or devices, CIDSs are still an important solution to secure SDN, but might be vulnerable to insider threats, in which an attacker can behave maliciously insider the network. In this work, we focus on this issue and advocate the merit on combining trust management and blockchain technology. Trust management can help evaluate the trustworthiness of each node, and blockchain technology can allow communication without a trusted party while ensuring the integrity of shared data. We then introduce a general framework of blockchain-based collaborative intrusion detection in SDN. In the study, we take challenge-based CIDS as a case, and evaluate our framework performance under both external and internal attacks. Our results indicate the viability and effectiveness of our framework.

KW - Blockchain technology

KW - Collaborative intrusion detection

KW - Insider attack

KW - Software defined networking

KW - Trust management

UR - http://www.scopus.com/inward/record.url?scp=85098252567&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-65745-1_15

DO - 10.1007/978-3-030-65745-1_15

M3 - Conference article published in proceeding or book

AN - SCOPUS:85098252567

SN - 9783030657444

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 261

EP - 276

BT - Network and System Security - 14th International Conference, NSS 2020, Proceedings

A2 - Kutyłowski, Mirosław

A2 - Zhang, Jun

A2 - Chen, Chao

PB - Springer Science and Business Media Deutschland GmbH

T2 - 14th International Conference on Network and System Security, NSS 2020

Y2 - 25 November 2020 through 27 November 2020

ER -

Li W, Tan J, Wang Y. A Framework of Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking. In Kutyłowski M, Zhang J, Chen C, editors, Network and System Security - 14th International Conference, NSS 2020, Proceedings. Springer Science and Business Media Deutschland GmbH. 2020. p. 261-276. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-65745-1_15

A Framework of Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

More information

Other files and links

Fingerprint

Cite this