Using Programmable Data Networks to Detect Critical Infrastructure Challenges
作者: Kyle J. S. White , Dimitrios P. Pezaros , Chris W. Johnson
DOI: 10.1007/978-3-319-31664-2_22
关键词: Programmable networking 、 Resilience (network) 、 Set (psychology) 、 Computer science 、 Computer security 、 Domain (software engineering) 、 Modular architecture 、 Critical infrastructure
摘要: Critical infrastructures must be better protected against challenges to their data communications in the face of increasing numbers emerging challenges, complexity and society’s demand intolerance failures. In this paper, we present a set characteristics by reviewing reported incidents. Using domain specific attributes discuss how these could mitigated. We advocate adoption latest programmable networking approaches critical infrastructure networks our proposed modular architecture with configurable monitoring security components. Lastly, show results from network challenge simulation which highlights benefits approach providing rapid, precise effective detection mitigation.
springer.com
sci-hub.se 参考文章(14)
Dimitrios P. Pezaros, Kyle J. S. White, Christopher W. Johnson, Principles for increased resilience in critical networked infrastructures ,(2014)
Syed Akbar Mehdi, Junaid Khalid, Syed Ali Khayam, Revisiting Traffic Anomaly Detection Using Software Defined Networking Lecture Notes in Computer Science. pp. 161- 180 ,(2011) , 10.1007/978-3-642-23644-0_9
Maciej Kuźniar, Peter Perešíni, Nedeljko Vasić, Marco Canini, Dejan Kostić, Automatic failure recovery for software-defined networks acm special interest group on data communication. pp. 159- 160 ,(2013) , 10.1145/2491185.2491218
Ying Zhang, An adaptive flow counting method for anomaly detection in SDN conference on emerging network experiment and technology. pp. 25- 30 ,(2013) , 10.1145/2535372.2535411
Guillaume Dewaele, Kensuke Fukuda, Pierre Borgnat, Patrice Abry, Kenjiro Cho, Extracting hidden anomalies using sketch and non Gaussian multiresolution statistical detection procedures acm special interest group on data communication. pp. 145- 152 ,(2007) , 10.1145/1352664.1352675
Alexander Shalimov, Dmitry Zuikov, Daria Zimarina, Vasily Pashkov, Ruslan Smeliansky, Advanced study of SDN/OpenFlow controllers central and eastern european software engineering conference in russia. pp. 1- 6 ,(2013) , 10.1145/2556610.2556621
Jelena Mirkovic, Peter Reiher, A taxonomy of DDoS attack and DDoS defense mechanisms acm special interest group on data communication. ,vol. 34, pp. 39- 53 ,(2004) , 10.1145/997150.997156
Ashley Flavel, Matthew Roughan, Nigel Bean, Aman Shaikh, None, Where’s Waldo? practical searches for stability in iBGP international conference on network protocols. pp. 308- 317 ,(2008) , 10.1109/ICNP.2008.4697049
Identifying, understanding, and analyzing critical infrastructure interdependencies IEEE Control Systems Magazine. ,vol. 21, pp. 11- 25 ,(2001) , 10.1109/37.969131
Ahmed Khurshid, Wenxuan Zhou, Matthew Caesar, P. Brighten Godfrey, VeriFlow: verifying network-wide invariants in real time acm special interest group on data communication. ,vol. 42, pp. 49- 54 ,(2012) , 10.1145/2342441.2342452