Visible to the public Multi-agent based intrusion prevention and mitigation architecture for software defined networks

TitleMulti-agent based intrusion prevention and mitigation architecture for software defined networks
Publication TypeConference Paper
Year of Publication2017
AuthorsSharma, V.
Conference Name2017 International Conference on Information and Communication Technology Convergence (ICTC)
Date Publishedoct
Keywordscomposability, Computer architecture, DDoS, DDoS Attack Prevention, Human Behavior, Intrusion detection, Knowledge engineering, Metrics, multi-agent system, Network topology, pubcrawl, Real-time Systems, Resiliency, security, Software, Software Defined Networks, Topology
Abstract

Software Defined Networking (SDN) has proved to be a promising approach for creating next generation software based network ecosystems. It has provided us with a centralized network provision, a holistic management plane and a well-defined level of abstraction. But, at the same time brings forth new security and management challenges. Research in the field of SDN is primarily focused on reconfiguration, forwarding and network management issues. However in recent times the interest has moved to tackling security and maintenance issues. This work is based on providing a means to mitigate security challenges in an SDN environment from a DDoS attack based point of view. This paper introduces a Multi-Agent based intrusion prevention and mitigation architecture for SDN. Thus allowing networks to govern their behavior and take appropriate measures when the network is under attack. The architecture is evaluated against filter based intrusion prevention architectures to measure efficiency and resilience against DDoS attacks and false policy based attacks.

DOI10.1109/ICTC.2017.8191067
Citation Keysharma_multi-agent_2017