TY - JOUR
T1 - Challenge-based collaborative intrusion detection in software-defined networking: an evaluation
AU - Li, Wenjuan
AU - Wang, Yu
AU - Jin, Zhiping
AU - Yu, Keping
AU - Li, Jin
AU - Xiang, Yang
N1 - Funding Information:
This work was supported by National Natural Science Foundation of China (No. 61802080 and 61802077 ), Guangdong General Colleges and Universities Research Project ( 2018GkQNCX105 ), and Zhongshan Public Welfare Science and Technology Research Project ( 2019B2044 ). Keping Yu was supported in part by the Japan Society for the Promotion of Science (JSPS) Grants-in-Aid for Scientific Research (KAKENHI) under Grant JP18K18044 .
Publisher Copyright:
© 2020 Chongqing University of Posts and Telecommunications
PY - 2021/5
Y1 - 2021/5
N2 - Software-Defined Networking (SDN) is an emerging architecture that enables a computer network to be intelligently and centrally controlled via software applications. It can help manage the whole network environment in a consistent and holistic way, without the need of understanding the underlying network structure. At present, SDN may face many challenges like insider attacks, i.e., the centralized control plane would be attacked by malicious underlying devices and switches. To protect the security of SDN, effective detection approaches are indispensable. In the literature, challenge-based Collaborative Intrusion Detection Networks (CIDNs) are an effective detection framework in identifying malicious nodes. It calculates the nodes’ reputation and detects a malicious node by sending out a special message called a challenge. In this work, we devise a challenge-based CIDN in SDN and measure its performance against malicious internal nodes. Our results demonstrate that such a mechanism can be effective in SDN environments.
AB - Software-Defined Networking (SDN) is an emerging architecture that enables a computer network to be intelligently and centrally controlled via software applications. It can help manage the whole network environment in a consistent and holistic way, without the need of understanding the underlying network structure. At present, SDN may face many challenges like insider attacks, i.e., the centralized control plane would be attacked by malicious underlying devices and switches. To protect the security of SDN, effective detection approaches are indispensable. In the literature, challenge-based Collaborative Intrusion Detection Networks (CIDNs) are an effective detection framework in identifying malicious nodes. It calculates the nodes’ reputation and detects a malicious node by sending out a special message called a challenge. In this work, we devise a challenge-based CIDN in SDN and measure its performance against malicious internal nodes. Our results demonstrate that such a mechanism can be effective in SDN environments.
KW - Challenge mechanism
KW - Collaborative intrusion detection
KW - Insider attack
KW - Software-defined networking
KW - Trust management
UR - http://www.scopus.com/inward/record.url?scp=85092903011&partnerID=8YFLogxK
U2 - 10.1016/j.dcan.2020.09.003
DO - 10.1016/j.dcan.2020.09.003
M3 - Journal article
AN - SCOPUS:85092903011
SN - 2468-5925
VL - 7
SP - 257
EP - 263
JO - Digital Communications and Networks
JF - Digital Communications and Networks
IS - 2
ER -