Visible to the public Collaborative Cyber Attack Defense in SDN Networks using Blockchain Technology

TitleCollaborative Cyber Attack Defense in SDN Networks using Blockchain Technology
Publication TypeConference Paper
Year of Publication2020
AuthorsHajizadeh, M., Afraz, N., Ruffini, M., Bauschert, T.
Conference Name2020 6th IEEE Conference on Network Softwarization (NetSoft)
Date PublishedJuly 2020
ISBN Number978-1-7281-5684-2
Keywordsblacklisting, blockchain, blockchain application, blockchain technology, Collaboration, collaborative cyber attack defense, collaborative DDoS attack mitigation, Collaborative DDoS Mitigation, Collaborative Defense, composability, Computer crime, computer network management, computer network security, contracts, cryptography, cyber threat intelligence, cyber threat intelligence plays, cyber threat intelligence sharing, cyber-attacks, defense, defense perspectives, Human Behavior, increases security awareness, invasive software, knowledge-sharing platform, legacy security defense mechanisms, malware campaigns, Metrics, open-source permissioned blockchain platform, Peer-to-peer computing, potential attacks, proactive defense, proactive defense operations, pubcrawl, resilience, Resiliency, SDN, SDN networks, secure distributed model, software defined networking, sophisticated threats, tamper-proof record-keeping, threat mitigation, Zero day attacks, Zero-Day

The legacy security defense mechanisms cannot resist where emerging sophisticated threats such as zero-day and malware campaigns have profoundly changed the dimensions of cyber-attacks. Recent studies indicate that cyber threat intelligence plays a crucial role in implementing proactive defense operations. It provides a knowledge-sharing platform that not only increases security awareness and readiness but also enables the collaborative defense to diminish the effectiveness of potential attacks. In this paper, we propose a secure distributed model to facilitate cyber threat intelligence sharing among diverse participants. The proposed model uses blockchain technology to assure tamper-proof record-keeping and smart contracts to guarantee immutable logic. We use an open-source permissioned blockchain platform, Hyperledger Fabric, to implement the blockchain application. We also utilize the flexibility and management capabilities of Software-Defined Networking to be integrated with the proposed sharing platform to enhance defense perspectives against threats in the system. In the end, collaborative DDoS attack mitigation is taken as a case study to demonstrate our approach.

Citation Keyhajizadeh_collaborative_2020