A Framework for Threats Analysis Using Software-Defined Networking

被引:0
作者
Moldovan, Francisc [1 ,2 ]
Oprisa, Ciprian [1 ,2 ]
机构
[1] Bitdefender, Bucharest, Romania
[2] Tech Univ Cluj Napoca, Cluj Napoca, Romania
来源
2018 IEEE 14TH INTERNATIONAL CONFERENCE ON INTELLIGENT COMPUTER COMMUNICATION AND PROCESSING (ICCP) | 2018年
关键词
D O I
暂无
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
The ability to analyze network threats is very important in security research. Traditional approaches, involving sandboxing technology are limited to simulating a single host, missing local network attacks. This issue is addressed by designing a threat analysis framework that uses software-defined networking for simulating arbitrary networks. The presented system offers flexibility, allowing a security researcher to define a virtual network that is able to capture malicious actions and to be restored to the initial state afterwards. Both the framework design and common usage scenarios are described. By providing this framework, we aim to ease the analysis effort in combating cyberthreats.
引用
收藏
页码:451 / 457
页数:7
相关论文
共 14 条
  • [1] Cyber Deception: Virtual Networks to Defend Insider Reconnaissance
    Achleitner, Stefan
    La Porta, Thomas
    McDaniel, Patrick
    Sugrim, Shridatt
    Krishnamurthy, Srikanth V.
    Chadha, Ritu
    [J]. MIST'16: PROCEEDINGS OF THE INTERNATIONAL WORKSHOP ON MANAGING INSIDER SECURITY THREATS, 2016, : 57 - 68
  • [2] Allen L., 2012, Advanced Penetration Testing for Highly-Secured Environments: The Ultimate Security Guide
  • [3] [Anonymous], LIN US MAN
  • [4] Software-defined networking (SDN): a survey
    Benzekki, Kamal
    El Fergougui, Abdeslam
    Elalaoui, Abdelbaki Elbelrhiti
    [J]. SECURITY AND COMMUNICATION NETWORKS, 2016, 9 (18) : 5803 - 5833
  • [5] Burks D., 2012, SECURITY ONION
  • [6] Cha S, 2016, INT CONF CONTR AUTO, P1, DOI 10.1109/ICCAIS.2016.7822425
  • [7] Freire P, 2014, QUAL INQ SOC JUSTICE, P1
  • [8] Kharraz A., 2015, P 12 INT C DET INTR, P3, DOI DOI 10.1007/978-3-319-20550-2_1
  • [9] Kondo TabuS., 2014, Journal of Emerging Trends in computing and information sciences, V5
  • [10] M. Team, 2017, MININET INSTANT VIRT
12