Provendo segurança em redes definidas por software através da integração com sistemas de detecção e prevenção de intrusão
2017
Intrusion Detection and Prevention Systems are fundamental to the network security,
to inspect the traffic in real time seeking intruders to ensure a reliable network is one of
it’s roles. However the lack of integration between the network equipments, is one of the
biggest factors to limit its operations. The concept of Software Defined Networks aims to
reduce the lack of integration among network assets due to the separation of the data plan
from the control plan. Given the limitation of integration between networks assets and
Intrusion Detection and Prevention Systems, the present study proposes, develops and
demonstrates IDSFlow, an integration model of intrusion detection systems in softwaredefined
networks. To validate IDSFlow, tests were run using Openflow, Mininet, CPqD
and Snort. The results obtained by the algorithms developed and presented show the
proposed integration capacity, it is possible to verify the feasibility of using the existing
and functional rules for Snort as well as to use the network usage history to increase the
effectiveness of intrusion detection and block.
Keywords:
- Correction
- Source
- Cite
- Save
- Machine Reading By IdeaReader
0
References
0
Citations
NaN
KQI