We found a match
Your institution may have access to this item. Find your institution then sign in to continue.
- Title
WORM-HUNTER: A Worm Guard System using Software-defined Networking.
- Authors
Yixun Hu; Kangfeng Zheng; Xu Wang; Yixian Yang
- Abstract
Network security is rapidly developing, but so are attack methods. Network worms are one of the most widely used attack methods and have are able to propagate quickly. As an active defense approach to network worms, the honeynet technique has long been limited by the closed architecture of traditional network devices. In this paper, we propose a closed loop defense system of worms based on a Software-Defined Networking (SDN) technology, called Worm-Hunter. The flexibility of SDN in network building is introduced to structure the network infrastructures of Worm-Hunter. By using well-designed flow tables, Worm-Hunter is able to easily deploy different honeynet systems with different network structures and dynamically. When anomalous traffic is detected by the analyzer in Worm-Hunter, it can be redirected into the honeynet and then safely analyzed. Throughout the process, attackers will not be aware that they are caught, and all of the attack behavior is recorded in the system for further analysis. Finally, we verify the system via experiments. The experiments show that Worm-Hunter is able to build multiple honeynet systems on one physical platform. Meanwhile, all of the honeynet systems with the same topology operate without interference.
- Subjects
HONEYPOTS (Network security); SOFTWARE-defined networking; VIRTUAL machine systems; NETWORK-centric operations (Military science); COMPUTER simulation
- Publication
KSII Transactions on Internet & Information Systems, 2017, Vol 11, Issue 1, p484
- ISSN
1976-7277
- Publication type
Article
- DOI
10.3837/tiis.2017.01.026