Building a Transparent Intrusion Detection and Prevention System on SDN
AbstractNetwork convergence, user mobility and various types of applications all contribute to the inhomogeneity of modern networks. The emergence of new technologies, unfortunately, increases the number of possible security threats to all parts of infrastructure. Therefore, network security protocols and mechanisms have to be able to respond to any security threat without affecting the performance of the network or degrading the quality of service. This paper presents an early stage concept of a transparent intrusion prevention system (TIPS) implemented using a combination of various technologies, most notably Software-Defined Networking (SDN) and poll-mode packet processing, which enables deep packet inspection in high-speed network environments.
Norsk Informasjonssikkerhetskonferanse 2014