分布式SDN中的协同异常检测

GLOBECOM 2020 - 2020 IEEE Global Communications Conference Pub Date : 2020-12-01 DOI:10.1109/GLOBECOM42002.2020.9322364

Lei Zhou, Jiangang Shu, X. Jia

{"title":"分布式SDN中的协同异常检测","authors":"Lei Zhou, Jiangang Shu, X. Jia","doi":"10.1109/GLOBECOM42002.2020.9322364","DOIUrl":null,"url":null,"abstract":"To mitigate the issues of scalability and reliability in centralized SDN, distributed SDN has emerged. However, cyber attacks in distributed SDN become increasingly serious. Since each distributed SDN controller can only obtain the network flows of its sub-network, a single controller with the biased flow information cannot detect all types of attacks in the entire network and the overall detection is a challenge. To solve the biased flow problem, we propose a collaborative anomaly detection scheme in distributed SDN, which enables multiple SDN controllers jointly train a global detection model to identify cyber attacks. We evaluate its performance based on a real-world dataset and the results show that our scheme is efficient and accurate in cyber attack detection.","PeriodicalId":12759,"journal":{"name":"GLOBECOM 2020 - 2020 IEEE Global Communications Conference","volume":"9 2 1","pages":"1-6"},"PeriodicalIF":0.0000,"publicationDate":"2020-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"Collaborative Anomaly Detection in Distributed SDN\",\"authors\":\"Lei Zhou, Jiangang Shu, X. Jia\",\"doi\":\"10.1109/GLOBECOM42002.2020.9322364\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"To mitigate the issues of scalability and reliability in centralized SDN, distributed SDN has emerged. However, cyber attacks in distributed SDN become increasingly serious. Since each distributed SDN controller can only obtain the network flows of its sub-network, a single controller with the biased flow information cannot detect all types of attacks in the entire network and the overall detection is a challenge. To solve the biased flow problem, we propose a collaborative anomaly detection scheme in distributed SDN, which enables multiple SDN controllers jointly train a global detection model to identify cyber attacks. We evaluate its performance based on a real-world dataset and the results show that our scheme is efficient and accurate in cyber attack detection.\",\"PeriodicalId\":12759,\"journal\":{\"name\":\"GLOBECOM 2020 - 2020 IEEE Global Communications Conference\",\"volume\":\"9 2 1\",\"pages\":\"1-6\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"GLOBECOM 2020 - 2020 IEEE Global Communications Conference\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/GLOBECOM42002.2020.9322364\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"GLOBECOM 2020 - 2020 IEEE Global Communications Conference","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/GLOBECOM42002.2020.9322364","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

摘要

为了缓解集中式SDN的可扩展性和可靠性问题，分布式SDN应运而生。然而，分布式SDN网络中的网络攻击日益严重。由于每个分布式SDN控制器只能获取其子网络的网络流量，单个控制器的流量信息有偏差，无法检测到整个网络中所有类型的攻击，整体检测是一个挑战。为了解决偏流问题，我们提出了分布式SDN中的协同异常检测方案，该方案允许多个SDN控制器共同训练全局检测模型来识别网络攻击。基于实际数据集对其性能进行了评估，结果表明该方案在网络攻击检测中是有效和准确的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Collaborative Anomaly Detection in Distributed SDN

To mitigate the issues of scalability and reliability in centralized SDN, distributed SDN has emerged. However, cyber attacks in distributed SDN become increasingly serious. Since each distributed SDN controller can only obtain the network flows of its sub-network, a single controller with the biased flow information cannot detect all types of attacks in the entire network and the overall detection is a challenge. To solve the biased flow problem, we propose a collaborative anomaly detection scheme in distributed SDN, which enables multiple SDN controllers jointly train a global detection model to identify cyber attacks. We evaluate its performance based on a real-world dataset and the results show that our scheme is efficient and accurate in cyber attack detection.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

GLOBECOM 2020 - 2020 IEEE Global Communications Conference

自引率

0.00%

发文量