Building a Transparent Intrusion Detection and Prevention System on SDN

Authors

  • Ognjen Joldzic Faculty of Electrical Engineering Banja Luka
  • Zoran Djuric Faculty of Electrical Engineering Banja Luka
  • Dijana Vukovic Faculty of Electrical Engineering Banja Luka

Abstract

Network convergence, user mobility and various types of applications all contribute to the inhomogeneity of modern networks. The emergence of new technologies, unfortunately, increases the number of possible security threats to all parts of infrastructure. Therefore, network security protocols and mechanisms have to be able to respond to any security threat without affecting the performance of the network or degrading the quality of service. This paper presents an early stage concept of a transparent intrusion prevention system (TIPS) implemented using a combination of various technologies, most notably Software-Defined Networking (SDN) and poll-mode packet processing, which enables deep packet inspection in high-speed network environments.

Published

2014-11-17

Issue

Section

Norsk Informasjonssikkerhetskonferanse 2014