An SDN-Based Approach to Ward Off LAN Attacks
The detection of attacks on large administrative network domains is nowadays generally accomplished centrally by analyzing the data traffic on the uplink to the Internet. The first phase of an infection is usually difficult to observe. Often attackers use e-mail attachments or external media, such a...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Wiley
2018-01-01
|
| Series: | Journal of Computer Networks and Communications |
| Online Access: | http://dx.doi.org/10.1155/2018/4127487 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1849473480901263360 |
|---|---|
| author | René Rietz Radoslaw Cwalinski Hartmut König Andreas Brinner |
| author_facet | René Rietz Radoslaw Cwalinski Hartmut König Andreas Brinner |
| author_sort | René Rietz |
| collection | DOAJ |
| description | The detection of attacks on large administrative network domains is nowadays generally accomplished centrally by analyzing the data traffic on the uplink to the Internet. The first phase of an infection is usually difficult to observe. Often attackers use e-mail attachments or external media, such as USB sticks, hardware with preinstalled malware, or contaminated mobile devices to infect target systems. In such scenarios, the initial infection cannot be blocked at the network level. The lateral movement of attack programs (exploits) through internal networks and the exfiltration of data, however, which are the main purpose of targeted attacks, run always over the network. Security measures against such internal network attacks require a comprehensive monitoring concept that spans the entire network to its edge. Especially for preventive measures, this means providing a security concept for local area networks (LANs). In this paper, we propose based on an analysis of typical LAN-based attacks an approach for preventing these attacks for both IPv4 and IPv6 networks. It applies the software-defined networking (SDN) paradigm for centralizing the related network decisions in a central authority—the SDN controller—that manages all network connections and hence the associated data flows. |
| format | Article |
| id | doaj-art-d2e8c366875e40f082515c4fd3933ccc |
| institution | Kabale University |
| issn | 2090-7141 2090-715X |
| language | English |
| publishDate | 2018-01-01 |
| publisher | Wiley |
| record_format | Article |
| series | Journal of Computer Networks and Communications |
| spelling | doaj-art-d2e8c366875e40f082515c4fd3933ccc2025-08-20T03:24:07ZengWileyJournal of Computer Networks and Communications2090-71412090-715X2018-01-01201810.1155/2018/41274874127487An SDN-Based Approach to Ward Off LAN AttacksRené Rietz0Radoslaw Cwalinski1Hartmut König2Andreas Brinner3Brandenburg University of Technology, Department of Computer Science, Group Computer Networks, PF 101344, Cottbus, GermanyBrandenburg University of Technology, Department of Computer Science, Group Computer Networks, PF 101344, Cottbus, GermanyBrandenburg University of Technology, Department of Computer Science, Group Computer Networks, PF 101344, Cottbus, GermanyGenua GmbH, Domagkstraße 7, 85551 Kirchheim Near Munich, GermanyThe detection of attacks on large administrative network domains is nowadays generally accomplished centrally by analyzing the data traffic on the uplink to the Internet. The first phase of an infection is usually difficult to observe. Often attackers use e-mail attachments or external media, such as USB sticks, hardware with preinstalled malware, or contaminated mobile devices to infect target systems. In such scenarios, the initial infection cannot be blocked at the network level. The lateral movement of attack programs (exploits) through internal networks and the exfiltration of data, however, which are the main purpose of targeted attacks, run always over the network. Security measures against such internal network attacks require a comprehensive monitoring concept that spans the entire network to its edge. Especially for preventive measures, this means providing a security concept for local area networks (LANs). In this paper, we propose based on an analysis of typical LAN-based attacks an approach for preventing these attacks for both IPv4 and IPv6 networks. It applies the software-defined networking (SDN) paradigm for centralizing the related network decisions in a central authority—the SDN controller—that manages all network connections and hence the associated data flows.http://dx.doi.org/10.1155/2018/4127487 |
| spellingShingle | René Rietz Radoslaw Cwalinski Hartmut König Andreas Brinner An SDN-Based Approach to Ward Off LAN Attacks Journal of Computer Networks and Communications |
| title | An SDN-Based Approach to Ward Off LAN Attacks |
| title_full | An SDN-Based Approach to Ward Off LAN Attacks |
| title_fullStr | An SDN-Based Approach to Ward Off LAN Attacks |
| title_full_unstemmed | An SDN-Based Approach to Ward Off LAN Attacks |
| title_short | An SDN-Based Approach to Ward Off LAN Attacks |
| title_sort | sdn based approach to ward off lan attacks |
| url | http://dx.doi.org/10.1155/2018/4127487 |
| work_keys_str_mv | AT renerietz ansdnbasedapproachtowardofflanattacks AT radoslawcwalinski ansdnbasedapproachtowardofflanattacks AT hartmutkonig ansdnbasedapproachtowardofflanattacks AT andreasbrinner ansdnbasedapproachtowardofflanattacks AT renerietz sdnbasedapproachtowardofflanattacks AT radoslawcwalinski sdnbasedapproachtowardofflanattacks AT hartmutkonig sdnbasedapproachtowardofflanattacks AT andreasbrinner sdnbasedapproachtowardofflanattacks |