Title :
Adaptive threat management through the integration of IDS into Software Defined Networks
Author :
Zanna, Paul ; O´Neill, Benjamin ; Radcliffe, Pj ; Hosseini, Sepehr ; Salman Ul Hoque, Md
Author_Institution :
RMIT Univ., Melbourne, VIC, Australia
Abstract :
For many years network operators have struggled to maintain fragile, statically configured and extremely complex networks. The constant threat of viruses, malware, intruders and misconfigured devices has made the task even more difficult. The use of an Intrusion Detection System (IDS) has become a standard defense model in many networks, however they are expensive and difficult to maintain and further complicate a network. This paper introduces a novel approach that integrates a distributed Intrusion Detection System into a Software Defined Network (SDN) and in doing so provides a more scalable security and threat management solution. The core mechanisms that enable SDN to provide an IDS function have been implemented and their performance evaluated. The viability of this approach was evaluated and found to be an effective alternative to the current IDS deployment model.
Keywords :
computer network security; software defined networking; IDS; IDS integration; adaptive threat management; intruders; intrusion detection system; malware; misconfigured devices; software defined networks; viruses; Intrusion detection; Monitoring; Ports (Computers); Standards; Switches; Throughput; IDS; Intrusion Detection System; OpenFlow; SDN; Software Defined Network; Threat Management;
Conference_Titel :
Network of the Future (NOF), 2014 International Conference and Workshop on the
DOI :
10.1109/NOF.2014.7119792
