Abstract
To safeguard critical services and assets in a distributed environment, collaborative intrusion detection systems (CIDSs) are usually adopted to share necessary data and information among various nodes, and enhance the detection capability. For simplifying the network management, software defined networking (SDN) is an emerging platform that decouples the controller plane from the data plane. Intuitively, SDN can help lighten the management complexity in CIDSs, and a CIDS can protect the security of SDN. In practical implementation, trust management is an important approach to help identify insider attacks (or malicious nodes) in CIDSs, but the challenge is how to ensure the data integrity when evaluating the reputation of a node. Motivated by the recent development of blockchain technology, in this work, we design BlockCSDN - a framework of blockchain-based collaborative intrusion detection in SDN, and take the challenge-based CIDS as a study. The experimental results under both external and internal attacks indicate that using blockchain technology can benefit the robustness and security of CIDSs and SDN.
Original language | English |
---|---|
Journal | IEICE Transactions on Information and Systems |
Volume | 105 |
Issue number | 2 |
Pages (from-to) | 272-279 |
ISSN | 0916-8532 |
DOIs | |
Publication status | Published - 2022 |
Event | 14th International Conference on Network and System Security - Virtual event, Melbourne, Australia Duration: 25 Nov 2020 → 27 Nov 2020 http://nsclab.org/nss2020/ |
Conference
Conference | 14th International Conference on Network and System Security |
---|---|
Location | Virtual event |
Country/Territory | Australia |
City | Melbourne |
Period | 25/11/2020 → 27/11/2020 |
Internet address |