Van-Tai Nguyen, Van-Chuc Hoang, Xuan-Ha Nguyen, Kim-Hung Le
{"title":"面向软件定义网络的高性能威胁感知系统","authors":"Van-Tai Nguyen, Van-Chuc Hoang, Xuan-Ha Nguyen, Kim-Hung Le","doi":"10.1109/ATC55345.2022.9942972","DOIUrl":null,"url":null,"abstract":"With the rapid development of intelligent devices and high-speed networks, the popularity of Internet services and the Internet of Things (IoT) has been increasing significantly in the last decade. This leads to the explosion of data exchanged over the Internet, also known as the Big Data era, which has posed several challenges in preventing security threats, especially for intrusion detection systems (IDS) due to high data velocity. In this paper, we propose a Distributed Network Intrusion Detection System (DisIDS) that accurately detects security threats by gathering statistical information about flows from software-defined network (SDN) switches in real-time and identifying abnormal traffic patterns using a distributed machine learning model. Evaluation results on a simulated system show that our proposal could identify several security threats with high accuracy (94.7% f1-score) and a relatively low false alarm rate. Moreover, DisIDS architecture is designed using highly scalable components to accelerate the detection rate.","PeriodicalId":135827,"journal":{"name":"2022 International Conference on Advanced Technologies for Communications (ATC)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2022-10-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Towards a high-performance threat-aware system for software-defined networks\",\"authors\":\"Van-Tai Nguyen, Van-Chuc Hoang, Xuan-Ha Nguyen, Kim-Hung Le\",\"doi\":\"10.1109/ATC55345.2022.9942972\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"With the rapid development of intelligent devices and high-speed networks, the popularity of Internet services and the Internet of Things (IoT) has been increasing significantly in the last decade. This leads to the explosion of data exchanged over the Internet, also known as the Big Data era, which has posed several challenges in preventing security threats, especially for intrusion detection systems (IDS) due to high data velocity. In this paper, we propose a Distributed Network Intrusion Detection System (DisIDS) that accurately detects security threats by gathering statistical information about flows from software-defined network (SDN) switches in real-time and identifying abnormal traffic patterns using a distributed machine learning model. Evaluation results on a simulated system show that our proposal could identify several security threats with high accuracy (94.7% f1-score) and a relatively low false alarm rate. Moreover, DisIDS architecture is designed using highly scalable components to accelerate the detection rate.\",\"PeriodicalId\":135827,\"journal\":{\"name\":\"2022 International Conference on Advanced Technologies for Communications (ATC)\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-10-20\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 International Conference on Advanced Technologies for Communications (ATC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ATC55345.2022.9942972\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 International Conference on Advanced Technologies for Communications (ATC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ATC55345.2022.9942972","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Towards a high-performance threat-aware system for software-defined networks
With the rapid development of intelligent devices and high-speed networks, the popularity of Internet services and the Internet of Things (IoT) has been increasing significantly in the last decade. This leads to the explosion of data exchanged over the Internet, also known as the Big Data era, which has posed several challenges in preventing security threats, especially for intrusion detection systems (IDS) due to high data velocity. In this paper, we propose a Distributed Network Intrusion Detection System (DisIDS) that accurately detects security threats by gathering statistical information about flows from software-defined network (SDN) switches in real-time and identifying abnormal traffic patterns using a distributed machine learning model. Evaluation results on a simulated system show that our proposal could identify several security threats with high accuracy (94.7% f1-score) and a relatively low false alarm rate. Moreover, DisIDS architecture is designed using highly scalable components to accelerate the detection rate.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
