Challenge-based collaborative intrusion detection in software-defined networking: an evaluation

Wenjuan Li, Yu Wang, Zhiping Jin, Keping Yu, Jin Li, Yang Xiang

Research output: Journal article publicationJournal articleAcademic researchpeer-review

30 Citations (Scopus)

Abstract

Software-Defined Networking (SDN) is an emerging architecture that enables a computer network to be intelligently and centrally controlled via software applications. It can help manage the whole network environment in a consistent and holistic way, without the need of understanding the underlying network structure. At present, SDN may face many challenges like insider attacks, i.e., the centralized control plane would be attacked by malicious underlying devices and switches. To protect the security of SDN, effective detection approaches are indispensable. In the literature, challenge-based Collaborative Intrusion Detection Networks (CIDNs) are an effective detection framework in identifying malicious nodes. It calculates the nodes’ reputation and detects a malicious node by sending out a special message called a challenge. In this work, we devise a challenge-based CIDN in SDN and measure its performance against malicious internal nodes. Our results demonstrate that such a mechanism can be effective in SDN environments.

Original languageEnglish
Pages (from-to)257-263
Number of pages7
JournalDigital Communications and Networks
Volume7
Issue number2
DOIs
Publication statusPublished - May 2021
Externally publishedYes

Keywords

  • Challenge mechanism
  • Collaborative intrusion detection
  • Insider attack
  • Software-defined networking
  • Trust management

ASJC Scopus subject areas

  • Hardware and Architecture
  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'Challenge-based collaborative intrusion detection in software-defined networking: an evaluation'. Together they form a unique fingerprint.

Cite this