Files in this item

FilesDescriptionFormat

application/pdf

application/pdfirma_ideals.pdf (4MB)
(no description provided)PDF

Description

Title:IRMA via SDN: Intrusion Response and Monitoring Appliance via Software-Defined Networking
Author(s):Ujcich, Benjamin E.; Rausch, Michael J.; Nahrstedt, Klara; Sanders, William H.
Subject(s):software-defined networking
enterprise network
network intrusion prevention system
NIDS
NIPS
OpenFlow
Abstract:Recent approaches to network intrusion prevention systems (NIPSs) use software-defined networking (SDN) to take advantage of dynamic network reconfigurability and programmability, but issues remain with system component modularity, network size scalability, and response latency. We present IRMA, a novel SDN-based NIPS for enterprise networks, as a network appliance that captures data traffic, checks for intrusions, issues alerts, and responds to alerts by automatically reconfiguring network flows via the SDN control plane. With a composable, modular, and parallelizable service design, we show improved throughput and less than 100 ms average latency between alert detection and response.
Issue Date:2015-10-14
Genre:Working / Discussion Paper
Type:Text
Language:English
URI:http://hdl.handle.net/2142/88342
Sponsor:Roy J. Carver Fellowship
Date Available in IDEALS:2015-10-14


This item appears in the following Collection(s)

Item Statistics