Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN

Detalhes bibliográficos
Autor(a) principal: CAMPOS, Maxli Barroso
Data de Publicação: 2017
Tipo de documento: Dissertação
Idioma: por
Título da fonte: Biblioteca Digital de Teses e Dissertações da UNIFACS
Texto Completo: http://teste.tede.unifacs.br:8080/tede/handle/tede/600
Resumo: Software Defined Networking (SDN) paradimg decouples control plane and of data plane, providing high programmability and a global view of the network. The adoption of this approach is growing in business networks, data centers and critical infrastructures such as smart grids. However, it is a challenge not only to provide security in these new generation networks but also to allow a network attack to be susceptible to an incident handling and forensic expertise procedure. In this way, this master’s degree dissertation proposes the implementation of a Environment for Flexible Attacks Detection and Prevention in OpenFlow/SDN Networks, which includes the setup of a real OpenFlow/SDN Testbed environment and implemented mechanisms for detection and response to threats capable of providing resources for intrusion and attack analysis. These mechanisms were implemented with the goal of providing security event monitoring and treatment in a flexible way, by categorizing the attack types and associated with whitelist and blacklist resources, exploiting one of the main characteristics of the OpenFlow network controller to be Extensible and programmable. The validation of the environment was done through simulation based on 5 (five) different scenarios and the obtained results demonstrate that the different classes of network attacks were identified and treated according to the defined strategy. Also, the mechanisms of protection and analysis of the intrusion into the OpenFlow/SDN network Testbed environment were effective and had the expected behavior according to each class of traffic defined in the proposal.
id UNIF_7a0bf3c4e20d47fb6544e7ec9ae68f3f
oai_identifier_str oai:teste.tede.unifacs.br:tede/600
network_acronym_str UNIF
network_name_str Biblioteca Digital de Teses e Dissertações da UNIFACS
repository_id_str
spelling MARTINS, Joberto S. B.SAMPAIO, Leobino NascimentoSAMPAIO, Paulo Nazareno MaiaCAMPOS, Maxli Barroso2017-07-19T22:11:21Z2017-04-03CAMPOS, Maxli Barroso. Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN. 2017. 139p. Dissertação (Sistemas e Computação) - UNIFACS Universidade Salvador, Salvador, 2017.http://teste.tede.unifacs.br:8080/tede/handle/tede/600Software Defined Networking (SDN) paradimg decouples control plane and of data plane, providing high programmability and a global view of the network. The adoption of this approach is growing in business networks, data centers and critical infrastructures such as smart grids. However, it is a challenge not only to provide security in these new generation networks but also to allow a network attack to be susceptible to an incident handling and forensic expertise procedure. In this way, this master’s degree dissertation proposes the implementation of a Environment for Flexible Attacks Detection and Prevention in OpenFlow/SDN Networks, which includes the setup of a real OpenFlow/SDN Testbed environment and implemented mechanisms for detection and response to threats capable of providing resources for intrusion and attack analysis. These mechanisms were implemented with the goal of providing security event monitoring and treatment in a flexible way, by categorizing the attack types and associated with whitelist and blacklist resources, exploiting one of the main characteristics of the OpenFlow network controller to be Extensible and programmable. The validation of the environment was done through simulation based on 5 (five) different scenarios and the obtained results demonstrate that the different classes of network attacks were identified and treated according to the defined strategy. Also, the mechanisms of protection and analysis of the intrusion into the OpenFlow/SDN network Testbed environment were effective and had the expected behavior according to each class of traffic defined in the proposal.As Redes Definidas por Software (Software Defined Networking – SDN) desacoplam o controle do encaminhamento de dados, oferecendo alta programabilidade e uma visão global da rede. A adoção dessa abordagem é crescente em redes empresariais, centros de dados e infraestruturas críticas como as redes elétricas inteligentes. No entanto, constitui-se um desafio não só prover segurança nessas redes de nova geração como também permitir que um ataque à rede seja suscetível a um procedimento de tratamento de incidentes e perícia forense. Desta forma, esta dissertação de mestrado propõe a implementação de um Ambiente para Detecção e Prevenção Flexível de Ataques em redes OpenFlow/SDN, que contempla a construção de uma rede real OpenFlow/SDN em ambiente de experimentação (Testbed) e mecanismos implementados de detecção e reação a ameaças de segurança, capaz de fornecer recursos para realização de análises de intrusão e de ataques. Estes mecanismos foram implementados com o objetivo de prover um monitoramento e tratamento de eventos de segurança de forma flexível, por meio da categorização dos tipos de ataque e associado a recursos de whitelist e blacklist, explorando uma das principais características do controlador de rede OpenFlow de ser extensível e programável. A validação do ambiente foi feita por meio da simulação de 5 (cinco) diferentes cenários e os resultados obtidos demonstram que as diferentes classes de ataques de rede foram identificadas e tratadas conforme a estratégia de tratamento definida. Além disso, os mecanismos de proteção e de análise de intrusão na rede real OpenFlow/SDN em ambiente de experimentação foram efetivos e tiveram o comportamento esperado, de acordo com cada classe de tráfego definida na proposta de trabalho.Submitted by Roseli Araujo (roseli.araujo@unifacs.br) on 2017-07-19T22:11:21Z No. of bitstreams: 1 Dissertacao MAXLI BARROSO CAMPOS.pdf: 3056369 bytes, checksum: 4f59e22091c8c50b81e7d423b13308f9 (MD5)Made available in DSpace on 2017-07-19T22:11:21Z (GMT). No. of bitstreams: 1 Dissertacao MAXLI BARROSO CAMPOS.pdf: 3056369 bytes, checksum: 4f59e22091c8c50b81e7d423b13308f9 (MD5) Previous issue date: 2017-04-03application/pdfporUniversidade SalvadorSistemas e ComputaçãoUNIFACSBrasilSistemas e ComputaçãoRedes Definidas por SoftwareOpenFlow – SDNAmeaças de segurançaTratamento e resposta a incidenteCiências Exatas e da TerraUm ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDNinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesisinfo:eu-repo/semantics/openAccessreponame:Biblioteca Digital de Teses e Dissertações da UNIFACSinstname:Universidade Salvador (UNIFACS)instacron:UNIFACSLICENSElicense.txtlicense.txttext/plain; charset=utf-82165http://teste.tede.unifacs.br:8080/tede/bitstream/tede/600/1/license.txtbd3efa91386c1718a7f26a329fdcb468MD51ORIGINALDissertacao MAXLI BARROSO CAMPOS.pdfDissertacao MAXLI BARROSO CAMPOS.pdfapplication/pdf3056369http://teste.tede.unifacs.br:8080/tede/bitstream/tede/600/2/Dissertacao+MAXLI+BARROSO+CAMPOS.pdf4f59e22091c8c50b81e7d423b13308f9MD52tede/6002017-07-19 19:11:21.297oai:teste.tede.unifacs.br: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Biblioteca Digital de Teses e Dissertaçõeshttp://tede.unifacs.br/http://tede.unifacs.br:8080/oai/requestbibliotecadigital@unifacs.br||bibliotecadigital@unifacs.bropendoar:2017-07-19T22:11:21Biblioteca Digital de Teses e Dissertações da UNIFACS - Universidade Salvador (UNIFACS)false
dc.title.por.fl_str_mv Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN
title Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN
spellingShingle Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN
CAMPOS, Maxli Barroso
Redes Definidas por Software
OpenFlow – SDN
Ameaças de segurança
Tratamento e resposta a incidente
Ciências Exatas e da Terra
title_short Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN
title_full Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN
title_fullStr Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN
title_full_unstemmed Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN
title_sort Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN
author CAMPOS, Maxli Barroso
author_facet CAMPOS, Maxli Barroso
author_role author
dc.contributor.advisor1.fl_str_mv MARTINS, Joberto S. B.
dc.contributor.referee1.fl_str_mv SAMPAIO, Leobino Nascimento
dc.contributor.referee2.fl_str_mv SAMPAIO, Paulo Nazareno Maia
dc.contributor.author.fl_str_mv CAMPOS, Maxli Barroso
contributor_str_mv MARTINS, Joberto S. B.
SAMPAIO, Leobino Nascimento
SAMPAIO, Paulo Nazareno Maia
dc.subject.por.fl_str_mv Redes Definidas por Software
OpenFlow – SDN
Ameaças de segurança
Tratamento e resposta a incidente
topic Redes Definidas por Software
OpenFlow – SDN
Ameaças de segurança
Tratamento e resposta a incidente
Ciências Exatas e da Terra
dc.subject.cnpq.fl_str_mv Ciências Exatas e da Terra
description Software Defined Networking (SDN) paradimg decouples control plane and of data plane, providing high programmability and a global view of the network. The adoption of this approach is growing in business networks, data centers and critical infrastructures such as smart grids. However, it is a challenge not only to provide security in these new generation networks but also to allow a network attack to be susceptible to an incident handling and forensic expertise procedure. In this way, this master’s degree dissertation proposes the implementation of a Environment for Flexible Attacks Detection and Prevention in OpenFlow/SDN Networks, which includes the setup of a real OpenFlow/SDN Testbed environment and implemented mechanisms for detection and response to threats capable of providing resources for intrusion and attack analysis. These mechanisms were implemented with the goal of providing security event monitoring and treatment in a flexible way, by categorizing the attack types and associated with whitelist and blacklist resources, exploiting one of the main characteristics of the OpenFlow network controller to be Extensible and programmable. The validation of the environment was done through simulation based on 5 (five) different scenarios and the obtained results demonstrate that the different classes of network attacks were identified and treated according to the defined strategy. Also, the mechanisms of protection and analysis of the intrusion into the OpenFlow/SDN network Testbed environment were effective and had the expected behavior according to each class of traffic defined in the proposal.
publishDate 2017
dc.date.accessioned.fl_str_mv 2017-07-19T22:11:21Z
dc.date.issued.fl_str_mv 2017-04-03
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/masterThesis
format masterThesis
status_str publishedVersion
dc.identifier.citation.fl_str_mv CAMPOS, Maxli Barroso. Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN. 2017. 139p. Dissertação (Sistemas e Computação) - UNIFACS Universidade Salvador, Salvador, 2017.
dc.identifier.uri.fl_str_mv http://teste.tede.unifacs.br:8080/tede/handle/tede/600
identifier_str_mv CAMPOS, Maxli Barroso. Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN. 2017. 139p. Dissertação (Sistemas e Computação) - UNIFACS Universidade Salvador, Salvador, 2017.
url http://teste.tede.unifacs.br:8080/tede/handle/tede/600
dc.language.iso.fl_str_mv por
language por
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv Universidade Salvador
dc.publisher.program.fl_str_mv Sistemas e Computação
dc.publisher.initials.fl_str_mv UNIFACS
dc.publisher.country.fl_str_mv Brasil
dc.publisher.department.fl_str_mv Sistemas e Computação
publisher.none.fl_str_mv Universidade Salvador
dc.source.none.fl_str_mv reponame:Biblioteca Digital de Teses e Dissertações da UNIFACS
instname:Universidade Salvador (UNIFACS)
instacron:UNIFACS
instname_str Universidade Salvador (UNIFACS)
instacron_str UNIFACS
institution UNIFACS
reponame_str Biblioteca Digital de Teses e Dissertações da UNIFACS
collection Biblioteca Digital de Teses e Dissertações da UNIFACS
bitstream.url.fl_str_mv http://teste.tede.unifacs.br:8080/tede/bitstream/tede/600/1/license.txt
http://teste.tede.unifacs.br:8080/tede/bitstream/tede/600/2/Dissertacao+MAXLI+BARROSO+CAMPOS.pdf
bitstream.checksum.fl_str_mv bd3efa91386c1718a7f26a329fdcb468
4f59e22091c8c50b81e7d423b13308f9
bitstream.checksumAlgorithm.fl_str_mv MD5
MD5
repository.name.fl_str_mv Biblioteca Digital de Teses e Dissertações da UNIFACS - Universidade Salvador (UNIFACS)
repository.mail.fl_str_mv bibliotecadigital@unifacs.br||bibliotecadigital@unifacs.br
_version_ 1800393065886646272

Registros relacionados