To safeguard critical services and assets in a distributed environment, collaborative intrusion detection systems (CIDSs) are usually adopted to share necessary data and information among various nodes, and enhance the detection capability. For simplifying the network management, software defined networking (SDN) is an emerging platform that decouples the controller plane from the data plane. Intuitively, SDN can help lighten the management complexity in CIDSs, and a CIDS can protect the security of SDN. In practical implementation, trust management is an important approach to help identify insider attacks (or malicious nodes) in CIDSs, but the challenge is how to ensure the data integrity when evaluating the reputation of a node. Motivated by the recent development of blockchain technology, in this work, we design BlockCSDN — a framework of blockchain-based collaborative intrusion detection in SDN, and take the challenge-based CIDS as a study. The experimental results under both external and internal attacks indicate that using blockchain technology can benefit the robustness and security of CIDSs and SDN.
Wenjuan LI
Guangzhou University,The Hong Kong Polytechnic University
Yu WANG
Guangzhou University
Weizhi MENG
Guangzhou University,Technical University of Denmark
Jin LI
Guangzhou University
Chunhua SU
University of Aizu
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Copy
Wenjuan LI, Yu WANG, Weizhi MENG, Jin LI, Chunhua SU, "BlockCSDN: Towards Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking" in IEICE TRANSACTIONS on Information,
vol. E105-D, no. 2, pp. 272-279, February 2022, doi: 10.1587/transinf.2021BCP0013.
Abstract: To safeguard critical services and assets in a distributed environment, collaborative intrusion detection systems (CIDSs) are usually adopted to share necessary data and information among various nodes, and enhance the detection capability. For simplifying the network management, software defined networking (SDN) is an emerging platform that decouples the controller plane from the data plane. Intuitively, SDN can help lighten the management complexity in CIDSs, and a CIDS can protect the security of SDN. In practical implementation, trust management is an important approach to help identify insider attacks (or malicious nodes) in CIDSs, but the challenge is how to ensure the data integrity when evaluating the reputation of a node. Motivated by the recent development of blockchain technology, in this work, we design BlockCSDN — a framework of blockchain-based collaborative intrusion detection in SDN, and take the challenge-based CIDS as a study. The experimental results under both external and internal attacks indicate that using blockchain technology can benefit the robustness and security of CIDSs and SDN.
URL: https://global.ieice.org/en_transactions/information/10.1587/transinf.2021BCP0013/_p
Copy
@ARTICLE{e105-d_2_272,
author={Wenjuan LI, Yu WANG, Weizhi MENG, Jin LI, Chunhua SU, },
journal={IEICE TRANSACTIONS on Information},
title={BlockCSDN: Towards Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking},
year={2022},
volume={E105-D},
number={2},
pages={272-279},
abstract={To safeguard critical services and assets in a distributed environment, collaborative intrusion detection systems (CIDSs) are usually adopted to share necessary data and information among various nodes, and enhance the detection capability. For simplifying the network management, software defined networking (SDN) is an emerging platform that decouples the controller plane from the data plane. Intuitively, SDN can help lighten the management complexity in CIDSs, and a CIDS can protect the security of SDN. In practical implementation, trust management is an important approach to help identify insider attacks (or malicious nodes) in CIDSs, but the challenge is how to ensure the data integrity when evaluating the reputation of a node. Motivated by the recent development of blockchain technology, in this work, we design BlockCSDN — a framework of blockchain-based collaborative intrusion detection in SDN, and take the challenge-based CIDS as a study. The experimental results under both external and internal attacks indicate that using blockchain technology can benefit the robustness and security of CIDSs and SDN.},
keywords={},
doi={10.1587/transinf.2021BCP0013},
ISSN={1745-1361},
month={February},}
Copy
TY - JOUR
TI - BlockCSDN: Towards Blockchain-Based Collaborative Intrusion Detection in Software Defined Networking
T2 - IEICE TRANSACTIONS on Information
SP - 272
EP - 279
AU - Wenjuan LI
AU - Yu WANG
AU - Weizhi MENG
AU - Jin LI
AU - Chunhua SU
PY - 2022
DO - 10.1587/transinf.2021BCP0013
JO - IEICE TRANSACTIONS on Information
SN - 1745-1361
VL - E105-D
IS - 2
JA - IEICE TRANSACTIONS on Information
Y1 - February 2022
AB - To safeguard critical services and assets in a distributed environment, collaborative intrusion detection systems (CIDSs) are usually adopted to share necessary data and information among various nodes, and enhance the detection capability. For simplifying the network management, software defined networking (SDN) is an emerging platform that decouples the controller plane from the data plane. Intuitively, SDN can help lighten the management complexity in CIDSs, and a CIDS can protect the security of SDN. In practical implementation, trust management is an important approach to help identify insider attacks (or malicious nodes) in CIDSs, but the challenge is how to ensure the data integrity when evaluating the reputation of a node. Motivated by the recent development of blockchain technology, in this work, we design BlockCSDN — a framework of blockchain-based collaborative intrusion detection in SDN, and take the challenge-based CIDS as a study. The experimental results under both external and internal attacks indicate that using blockchain technology can benefit the robustness and security of CIDSs and SDN.
ER -