Challenge-based collaborative intrusion detection in software-defined networking: an evaluation

Wenjuan Li; Yu Wang; Zhiping Jin; Keping Yu; Jin Li; Yang Xiang

doi:10.1016/j.dcan.2020.09.003

Challenge-based collaborative intrusion detection in software-defined networking: an evaluation

Wenjuan Li, Yu Wang, Zhiping Jin, Keping Yu, Jin Li, Yang Xiang

Research output: Journal article publication › Journal article › Academic research › peer-review

18 Citations (Scopus)

Abstract

Software-Defined Networking (SDN) is an emerging architecture that enables a computer network to be intelligently and centrally controlled via software applications. It can help manage the whole network environment in a consistent and holistic way, without the need of understanding the underlying network structure. At present, SDN may face many challenges like insider attacks, i.e., the centralized control plane would be attacked by malicious underlying devices and switches. To protect the security of SDN, effective detection approaches are indispensable. In the literature, challenge-based Collaborative Intrusion Detection Networks (CIDNs) are an effective detection framework in identifying malicious nodes. It calculates the nodes’ reputation and detects a malicious node by sending out a special message called a challenge. In this work, we devise a challenge-based CIDN in SDN and measure its performance against malicious internal nodes. Our results demonstrate that such a mechanism can be effective in SDN environments.

Original language	English
Pages (from-to)	257-263
Number of pages	7
Journal	Digital Communications and Networks
Volume	7
Issue number	2
DOIs	https://doi.org/10.1016/j.dcan.2020.09.003
Publication status	Published - May 2021
Externally published	Yes

Keywords

Challenge mechanism
Collaborative intrusion detection
Insider attack
Software-defined networking
Trust management

ASJC Scopus subject areas

Hardware and Architecture
Computer Networks and Communications

More information

10.1016/j.dcan.2020.09.003

Cite this

@article{66fe896bb2bd4b31919456493f01ac40,

title = "Challenge-based collaborative intrusion detection in software-defined networking: an evaluation",

abstract = "Software-Defined Networking (SDN) is an emerging architecture that enables a computer network to be intelligently and centrally controlled via software applications. It can help manage the whole network environment in a consistent and holistic way, without the need of understanding the underlying network structure. At present, SDN may face many challenges like insider attacks, i.e., the centralized control plane would be attacked by malicious underlying devices and switches. To protect the security of SDN, effective detection approaches are indispensable. In the literature, challenge-based Collaborative Intrusion Detection Networks (CIDNs) are an effective detection framework in identifying malicious nodes. It calculates the nodes{\textquoteright} reputation and detects a malicious node by sending out a special message called a challenge. In this work, we devise a challenge-based CIDN in SDN and measure its performance against malicious internal nodes. Our results demonstrate that such a mechanism can be effective in SDN environments.",

keywords = "Challenge mechanism, Collaborative intrusion detection, Insider attack, Software-defined networking, Trust management",

author = "Wenjuan Li and Yu Wang and Zhiping Jin and Keping Yu and Jin Li and Yang Xiang",

note = "Funding Information: This work was supported by National Natural Science Foundation of China (No. 61802080 and 61802077 ), Guangdong General Colleges and Universities Research Project ( 2018GkQNCX105 ), and Zhongshan Public Welfare Science and Technology Research Project ( 2019B2044 ). Keping Yu was supported in part by the Japan Society for the Promotion of Science (JSPS) Grants-in-Aid for Scientific Research (KAKENHI) under Grant JP18K18044 . Publisher Copyright: {\textcopyright} 2020 Chongqing University of Posts and Telecommunications",

year = "2021",

month = may,

doi = "10.1016/j.dcan.2020.09.003",

language = "English",

volume = "7",

pages = "257--263",

journal = "Digital Communications and Networks",

issn = "2468-5925",

publisher = "Chongqing University of Posts and Telecommunications",

number = "2",

}

TY - JOUR

T1 - Challenge-based collaborative intrusion detection in software-defined networking: an evaluation

AU - Li, Wenjuan

AU - Wang, Yu

AU - Jin, Zhiping

AU - Yu, Keping

AU - Li, Jin

AU - Xiang, Yang

N1 - Funding Information: This work was supported by National Natural Science Foundation of China (No. 61802080 and 61802077 ), Guangdong General Colleges and Universities Research Project ( 2018GkQNCX105 ), and Zhongshan Public Welfare Science and Technology Research Project ( 2019B2044 ). Keping Yu was supported in part by the Japan Society for the Promotion of Science (JSPS) Grants-in-Aid for Scientific Research (KAKENHI) under Grant JP18K18044 . Publisher Copyright: © 2020 Chongqing University of Posts and Telecommunications

PY - 2021/5

Y1 - 2021/5

N2 - Software-Defined Networking (SDN) is an emerging architecture that enables a computer network to be intelligently and centrally controlled via software applications. It can help manage the whole network environment in a consistent and holistic way, without the need of understanding the underlying network structure. At present, SDN may face many challenges like insider attacks, i.e., the centralized control plane would be attacked by malicious underlying devices and switches. To protect the security of SDN, effective detection approaches are indispensable. In the literature, challenge-based Collaborative Intrusion Detection Networks (CIDNs) are an effective detection framework in identifying malicious nodes. It calculates the nodes’ reputation and detects a malicious node by sending out a special message called a challenge. In this work, we devise a challenge-based CIDN in SDN and measure its performance against malicious internal nodes. Our results demonstrate that such a mechanism can be effective in SDN environments.

AB - Software-Defined Networking (SDN) is an emerging architecture that enables a computer network to be intelligently and centrally controlled via software applications. It can help manage the whole network environment in a consistent and holistic way, without the need of understanding the underlying network structure. At present, SDN may face many challenges like insider attacks, i.e., the centralized control plane would be attacked by malicious underlying devices and switches. To protect the security of SDN, effective detection approaches are indispensable. In the literature, challenge-based Collaborative Intrusion Detection Networks (CIDNs) are an effective detection framework in identifying malicious nodes. It calculates the nodes’ reputation and detects a malicious node by sending out a special message called a challenge. In this work, we devise a challenge-based CIDN in SDN and measure its performance against malicious internal nodes. Our results demonstrate that such a mechanism can be effective in SDN environments.

KW - Challenge mechanism

KW - Collaborative intrusion detection

KW - Insider attack

KW - Software-defined networking

KW - Trust management

UR - http://www.scopus.com/inward/record.url?scp=85092903011&partnerID=8YFLogxK

U2 - 10.1016/j.dcan.2020.09.003

DO - 10.1016/j.dcan.2020.09.003

M3 - Journal article

AN - SCOPUS:85092903011

SN - 2468-5925

VL - 7

SP - 257

EP - 263

JO - Digital Communications and Networks

JF - Digital Communications and Networks

IS - 2

ER -

Challenge-based collaborative intrusion detection in software-defined networking: an evaluation

Abstract

Keywords

ASJC Scopus subject areas

More information

Other files and links

Fingerprint

Cite this