Design of a Network Scan Defense Method by Combining an SDN-based MTD and IPS

Shoya Chiba; Luis Guillen; Satoru Izumi; Toru Abe; Takuo Suganuma

doi:10.23919/APNOMS52696.2021.9562686

Design of a Network Scan Defense Method by Combining an SDN-based MTD and IPS

Shoya Chiba, Luis Guillen, Satoru Izumi, Toru Abe, Takuo Suganuma

研究成果: Conference contribution

1 被引用数 (Scopus)

抄録

This paper proposes a Software-Defined Network (SDN)-based Moving Target Defense (MTD) mechanism to protect the network from potential scans. The proposed mechanism can work in combination with an IPS without affecting its normal behavior. To do so, an SDN controller changes the packets' headers passing through switches using virtual IP addresses while the operation of IPS continues monitoring the devices' actual IP addresses. Preliminary results in an emulated environment show that it is possible to achieve a seamless collaboration between the MTD and IDS to detect low and high-rate scans.

本文言語	English
ホスト出版物のタイトル	2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021
出版社	Institute of Electrical and Electronics Engineers Inc.
ページ	273-278
ページ数	6
ISBN（電子版）	9784885523328
DOI	https://doi.org/10.23919/APNOMS52696.2021.9562686
出版ステータス	Published - 2021 9月 8
イベント	22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021 - Virtual, Online, Taiwan, Province of China 継続期間: 2021 9月 8 → 2021 9月 10

出版物シリーズ

名前	2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021

Conference

Conference	22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021
国/地域	Taiwan, Province of China
City	Virtual, Online
Period	21/9/8 → 21/9/10

ASJC Scopus subject areas

コンピュータネットワークおよび通信
ハードウェアとアーキテクチャ
情報システムおよび情報管理

文献へのアクセス

10.23919/APNOMS52696.2021.9562686

他のファイルとリンク

引用スタイル

Chiba, S., Guillen, L., Izumi, S., Abe, T., & Suganuma, T. (2021). Design of a Network Scan Defense Method by Combining an SDN-based MTD and IPS. In 2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021 (pp. 273-278). (2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.23919/APNOMS52696.2021.9562686

Design of a Network Scan Defense Method by Combining an SDN-based MTD and IPS. / Chiba, Shoya; Guillen, Luis ; Izumi, Satoru その他.
2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021. Institute of Electrical and Electronics Engineers Inc., 2021. p. 273-278 (2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021).

研究成果: Conference contribution

Chiba, S, Guillen, L , Izumi, S , Abe, T & Suganuma, T 2021, Design of a Network Scan Defense Method by Combining an SDN-based MTD and IPS. in 2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021. 2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021, Institute of Electrical and Electronics Engineers Inc., pp. 273-278, 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021, Virtual, Online, Taiwan, Province of China, 21/9/8. https://doi.org/10.23919/APNOMS52696.2021.9562686

Chiba S, Guillen L , Izumi S , Abe T , Suganuma T. Design of a Network Scan Defense Method by Combining an SDN-based MTD and IPS. In 2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021. Institute of Electrical and Electronics Engineers Inc. 2021. p. 273-278. (2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021). doi: 10.23919/APNOMS52696.2021.9562686

Chiba, Shoya ; Guillen, Luis ; Izumi, Satoru その他. / Design of a Network Scan Defense Method by Combining an SDN-based MTD and IPS. 2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021. Institute of Electrical and Electronics Engineers Inc., 2021. pp. 273-278 (2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021).

@inproceedings{cb416994ac20442a94c99a1f5a13b1c2,

title = "Design of a Network Scan Defense Method by Combining an SDN-based MTD and IPS",

abstract = "This paper proposes a Software-Defined Network (SDN)-based Moving Target Defense (MTD) mechanism to protect the network from potential scans. The proposed mechanism can work in combination with an IPS without affecting its normal behavior. To do so, an SDN controller changes the packets' headers passing through switches using virtual IP addresses while the operation of IPS continues monitoring the devices' actual IP addresses. Preliminary results in an emulated environment show that it is possible to achieve a seamless collaboration between the MTD and IDS to detect low and high-rate scans. ",

keywords = "IPS, MTD, Network Scan, SDN",

author = "Shoya Chiba and Luis Guillen and Satoru Izumi and Toru Abe and Takuo Suganuma",

note = "Publisher Copyright: {\textcopyright} 2021 IEICE.; 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021 ; Conference date: 08-09-2021 Through 10-09-2021",

year = "2021",

month = sep,

day = "8",

doi = "10.23919/APNOMS52696.2021.9562686",

language = "English",

series = "2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "273--278",

booktitle = "2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021",

}

TY - GEN

T1 - Design of a Network Scan Defense Method by Combining an SDN-based MTD and IPS

AU - Chiba, Shoya

AU - Guillen, Luis

AU - Izumi, Satoru

AU - Abe, Toru

AU - Suganuma, Takuo

PY - 2021/9/8

Y1 - 2021/9/8

N2 - This paper proposes a Software-Defined Network (SDN)-based Moving Target Defense (MTD) mechanism to protect the network from potential scans. The proposed mechanism can work in combination with an IPS without affecting its normal behavior. To do so, an SDN controller changes the packets' headers passing through switches using virtual IP addresses while the operation of IPS continues monitoring the devices' actual IP addresses. Preliminary results in an emulated environment show that it is possible to achieve a seamless collaboration between the MTD and IDS to detect low and high-rate scans.

AB - This paper proposes a Software-Defined Network (SDN)-based Moving Target Defense (MTD) mechanism to protect the network from potential scans. The proposed mechanism can work in combination with an IPS without affecting its normal behavior. To do so, an SDN controller changes the packets' headers passing through switches using virtual IP addresses while the operation of IPS continues monitoring the devices' actual IP addresses. Preliminary results in an emulated environment show that it is possible to achieve a seamless collaboration between the MTD and IDS to detect low and high-rate scans.

KW - IPS

KW - MTD

KW - Network Scan

KW - SDN

UR - http://www.scopus.com/inward/record.url?scp=85118118674&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85118118674&partnerID=8YFLogxK

U2 - 10.23919/APNOMS52696.2021.9562686

DO - 10.23919/APNOMS52696.2021.9562686

M3 - Conference contribution

AN - SCOPUS:85118118674

T3 - 2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021

SP - 273

EP - 278

BT - 2021 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 22nd Asia-Pacific Network Operations and Management Symposium, APNOMS 2021

Y2 - 8 September 2021 through 10 September 2021

ER -

Design of a Network Scan Defense Method by Combining an SDN-based MTD and IPS

抄録

出版物シリーズ

Conference

ASJC Scopus subject areas

文献へのアクセス

他のファイルとリンク

フィンガープリント

引用スタイル