Adaptive threat management through the integration of IDS into Software Defined Networks

Author

Zanna, Paul ; O´Neill, Benjamin ; Radcliffe, Pj ; Hosseini, Sepehr ; Salman Ul Hoque, Md

Author_Institution

RMIT Univ., Melbourne, VIC, Australia

fYear

2014

Firstpage

1

Lastpage

5

Abstract

For many years network operators have struggled to maintain fragile, statically configured and extremely complex networks. The constant threat of viruses, malware, intruders and misconfigured devices has made the task even more difficult. The use of an Intrusion Detection System (IDS) has become a standard defense model in many networks, however they are expensive and difficult to maintain and further complicate a network. This paper introduces a novel approach that integrates a distributed Intrusion Detection System into a Software Defined Network (SDN) and in doing so provides a more scalable security and threat management solution. The core mechanisms that enable SDN to provide an IDS function have been implemented and their performance evaluated. The viability of this approach was evaluated and found to be an effective alternative to the current IDS deployment model.

Keywords

computer network security; software defined networking; IDS; IDS integration; adaptive threat management; intruders; intrusion detection system; malware; misconfigured devices; software defined networks; viruses; Intrusion detection; Monitoring; Ports (Computers); Standards; Switches; Throughput; IDS; Intrusion Detection System; OpenFlow; SDN; Software Defined Network; Threat Management;

fLanguage

English

Publisher

ieee

Conference_Titel

Network of the Future (NOF), 2014 International Conference and Workshop on the

Type

conf

DOI

10.1109/NOF.2014.7119792

Filename

7119792