Abstract
Modern Intrusion Detection Systems are able to identify and check all traffic crossing the network segments that they are only set to monitor. Traditional network infrastructures use static detection mechanisms that check and monitor specific types of malicious traffic. To mitigate this potential waste of resources and improve scalability across an entire network, we propose a methodology which deploys distributed IDS in a Software Defined Network allowing them to be used for specific types of traffic as and when it appears on a network. The core of our work is the creation of an SDN application that takes input from a Snort IDS instances, thus working as a classifier for incoming network traffic with a static ruleset for those classifications. Our application has been tested on a virtualised platform where it performed as planned holding its position for limited use on static and controlled test environments.
| Original language | English |
|---|---|
| Title of host publication | 2021 11th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2021 |
| Publisher | Institute of Electrical and Electronics Engineers Inc. |
| ISBN (Electronic) | 9781665443999 |
| DOIs | |
| Publication status | Published - 19 Apr 2021 |
| Event | 11th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2021 - Paris, France Duration: 19 Apr 2021 → 21 Apr 2021 |
Publication series
| Name | 2021 11th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2021 |
|---|
Conference
| Conference | 11th IFIP International Conference on New Technologies, Mobility and Security, NTMS 2021 |
|---|---|
| Country/Territory | France |
| City | Paris |
| Period | 19/04/21 → 21/04/21 |
Bibliographical note
Publisher Copyright:© 2021 IEEE.
Keywords
- IDS
- Network Security
- SDN