TY - GEN
T1 - A design of port scan detection method based on the characteristics of packet-in messages in openflow networks
AU - Ono, Daichi
AU - Izumi, Satoru
AU - Abe, Toru
AU - Suganuma, Takuo
N1 - Publisher Copyright:
© 2020 KICS.
Copyright:
Copyright 2020 Elsevier B.V., All rights reserved.
PY - 2020/9
Y1 - 2020/9
N2 - Due to the diversification of devices and the spread of the Internet, many people are handling information over the network and the threat of cyber-attacks by unauthorized access and malware is also considered as a problem, and countermeasures against these threats are an urgent issue. SDN and OpenFlow are useful for network cybersecurity countermeasures because they can collect traffic statistics from switches and can interrupt communication at the switch level. In this study, we focus on detecting a port scanning as a preparation stage for cyber-attacks. In this paper, we propose port scan detection method based on the characteristics of Packet-In messages in an OF network. Also, we show its effectiveness through the experiments.
AB - Due to the diversification of devices and the spread of the Internet, many people are handling information over the network and the threat of cyber-attacks by unauthorized access and malware is also considered as a problem, and countermeasures against these threats are an urgent issue. SDN and OpenFlow are useful for network cybersecurity countermeasures because they can collect traffic statistics from switches and can interrupt communication at the switch level. In this study, we focus on detecting a port scanning as a preparation stage for cyber-attacks. In this paper, we propose port scan detection method based on the characteristics of Packet-In messages in an OF network. Also, we show its effectiveness through the experiments.
KW - OpenFlow
KW - Packet-In message
KW - Port scan detection
KW - SDN
UR - http://www.scopus.com/inward/record.url?scp=85096970556&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85096970556&partnerID=8YFLogxK
U2 - 10.23919/APNOMS50412.2020.9237012
DO - 10.23919/APNOMS50412.2020.9237012
M3 - Conference contribution
AN - SCOPUS:85096970556
T3 - APNOMS 2020 - 2020 21st Asia-Pacific Network Operations and Management Symposium: Towards Service and Networking Intelligence for Humanity
SP - 120
EP - 125
BT - APNOMS 2020 - 2020 21st Asia-Pacific Network Operations and Management Symposium
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 21st Asia-Pacific Network Operations and Management Symposium, APNOMS 2020
Y2 - 22 September 2020 through 25 September 2020
ER -