A comprehensive 3‐dimensional security analysis of a controller in software‐defined networking

Tseng, Yuchia; Naït‐Abdesselam, Farid; Khokhar, Ashfaq

doi:10.1002/spy2.21

Cited by 5 publications

(1 citation statement)

References 76 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This manuscript does not emphasize all attack types in the SDN context; instead, some attacks, which are relevant to the InSDN dataset are reported in the following paragraphs. Rather, interested readers may refer to previous studies [52], [57]- [60] for more detailed information.…”

Section: B Sdn Specific Attacksmentioning

confidence: 99%

InSDN: A Novel SDN Intrusion Dataset

2020

View full text Add to dashboard Cite

Software-Defined Network (SDN) has been developed to reduce network complexity through control and manage the whole network from a centralized location. Today, SDN is widely implemented in many data center's network environments. Nevertheless, emerging technology itself can lead to many vulnerabilities and threats which are still challenging for manufacturers to address it. Therefore, deploying Intrusion Detection Systems (IDSs) to monitor malicious activities is a crucial part of the network architecture. Although the centralized view of the SDN network creates new opportunities for the implementation of IDSs, the performance of these detection techniques relies on the quality of the training datasets. Unfortunately, there are no publicly available datasets that can be used directly for anomaly detection systems applied in SDN networks. The majority of the published studies use non-compatible and outdated datasets, such as the KDD'99 dataset. This manuscript aims to generate an attack-specific SDN dataset and it is publicly available to the researchers. To the best of our knowledge, our work is one of the first solutions to produce a comprehensive SDN dataset to verify the performance of intrusion detection systems. The new dataset includes the benign and various attack categories that can occur in the different elements of the SDN platform. Further, we demonstrate the use of our proposed dataset by performing an experimental evaluation using eight popular machine-learning-based techniques for IDSs.

show abstract

Section: B Sdn Specific Attacksmentioning

confidence: 99%