Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN
Autor(a) principal: | |
---|---|
Data de Publicação: | 2017 |
Tipo de documento: | Dissertação |
Idioma: | por |
Título da fonte: | Biblioteca Digital de Teses e Dissertações da UNIFACS |
Texto Completo: | http://teste.tede.unifacs.br:8080/tede/handle/tede/600 |
Resumo: | Software Defined Networking (SDN) paradimg decouples control plane and of data plane, providing high programmability and a global view of the network. The adoption of this approach is growing in business networks, data centers and critical infrastructures such as smart grids. However, it is a challenge not only to provide security in these new generation networks but also to allow a network attack to be susceptible to an incident handling and forensic expertise procedure. In this way, this master’s degree dissertation proposes the implementation of a Environment for Flexible Attacks Detection and Prevention in OpenFlow/SDN Networks, which includes the setup of a real OpenFlow/SDN Testbed environment and implemented mechanisms for detection and response to threats capable of providing resources for intrusion and attack analysis. These mechanisms were implemented with the goal of providing security event monitoring and treatment in a flexible way, by categorizing the attack types and associated with whitelist and blacklist resources, exploiting one of the main characteristics of the OpenFlow network controller to be Extensible and programmable. The validation of the environment was done through simulation based on 5 (five) different scenarios and the obtained results demonstrate that the different classes of network attacks were identified and treated according to the defined strategy. Also, the mechanisms of protection and analysis of the intrusion into the OpenFlow/SDN network Testbed environment were effective and had the expected behavior according to each class of traffic defined in the proposal. |
id |
UNIF_7a0bf3c4e20d47fb6544e7ec9ae68f3f |
---|---|
oai_identifier_str |
oai:teste.tede.unifacs.br:tede/600 |
network_acronym_str |
UNIF |
network_name_str |
Biblioteca Digital de Teses e Dissertações da UNIFACS |
repository_id_str |
|
spelling |
MARTINS, Joberto S. B.SAMPAIO, Leobino NascimentoSAMPAIO, Paulo Nazareno MaiaCAMPOS, Maxli Barroso2017-07-19T22:11:21Z2017-04-03CAMPOS, Maxli Barroso. Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN. 2017. 139p. Dissertação (Sistemas e Computação) - UNIFACS Universidade Salvador, Salvador, 2017.http://teste.tede.unifacs.br:8080/tede/handle/tede/600Software Defined Networking (SDN) paradimg decouples control plane and of data plane, providing high programmability and a global view of the network. The adoption of this approach is growing in business networks, data centers and critical infrastructures such as smart grids. However, it is a challenge not only to provide security in these new generation networks but also to allow a network attack to be susceptible to an incident handling and forensic expertise procedure. In this way, this master’s degree dissertation proposes the implementation of a Environment for Flexible Attacks Detection and Prevention in OpenFlow/SDN Networks, which includes the setup of a real OpenFlow/SDN Testbed environment and implemented mechanisms for detection and response to threats capable of providing resources for intrusion and attack analysis. These mechanisms were implemented with the goal of providing security event monitoring and treatment in a flexible way, by categorizing the attack types and associated with whitelist and blacklist resources, exploiting one of the main characteristics of the OpenFlow network controller to be Extensible and programmable. The validation of the environment was done through simulation based on 5 (five) different scenarios and the obtained results demonstrate that the different classes of network attacks were identified and treated according to the defined strategy. Also, the mechanisms of protection and analysis of the intrusion into the OpenFlow/SDN network Testbed environment were effective and had the expected behavior according to each class of traffic defined in the proposal.As Redes Definidas por Software (Software Defined Networking – SDN) desacoplam o controle do encaminhamento de dados, oferecendo alta programabilidade e uma visão global da rede. A adoção dessa abordagem é crescente em redes empresariais, centros de dados e infraestruturas críticas como as redes elétricas inteligentes. No entanto, constitui-se um desafio não só prover segurança nessas redes de nova geração como também permitir que um ataque à rede seja suscetível a um procedimento de tratamento de incidentes e perícia forense. Desta forma, esta dissertação de mestrado propõe a implementação de um Ambiente para Detecção e Prevenção Flexível de Ataques em redes OpenFlow/SDN, que contempla a construção de uma rede real OpenFlow/SDN em ambiente de experimentação (Testbed) e mecanismos implementados de detecção e reação a ameaças de segurança, capaz de fornecer recursos para realização de análises de intrusão e de ataques. Estes mecanismos foram implementados com o objetivo de prover um monitoramento e tratamento de eventos de segurança de forma flexível, por meio da categorização dos tipos de ataque e associado a recursos de whitelist e blacklist, explorando uma das principais características do controlador de rede OpenFlow de ser extensível e programável. A validação do ambiente foi feita por meio da simulação de 5 (cinco) diferentes cenários e os resultados obtidos demonstram que as diferentes classes de ataques de rede foram identificadas e tratadas conforme a estratégia de tratamento definida. Além disso, os mecanismos de proteção e de análise de intrusão na rede real OpenFlow/SDN em ambiente de experimentação foram efetivos e tiveram o comportamento esperado, de acordo com cada classe de tráfego definida na proposta de trabalho.Submitted by Roseli Araujo (roseli.araujo@unifacs.br) on 2017-07-19T22:11:21Z No. of bitstreams: 1 Dissertacao MAXLI BARROSO CAMPOS.pdf: 3056369 bytes, checksum: 4f59e22091c8c50b81e7d423b13308f9 (MD5)Made available in DSpace on 2017-07-19T22:11:21Z (GMT). No. of bitstreams: 1 Dissertacao MAXLI BARROSO CAMPOS.pdf: 3056369 bytes, checksum: 4f59e22091c8c50b81e7d423b13308f9 (MD5) Previous issue date: 2017-04-03application/pdfporUniversidade SalvadorSistemas e ComputaçãoUNIFACSBrasilSistemas e ComputaçãoRedes Definidas por SoftwareOpenFlow – SDNAmeaças de segurançaTratamento e resposta a incidenteCiências Exatas e da TerraUm ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDNinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesisinfo:eu-repo/semantics/openAccessreponame:Biblioteca Digital de Teses e Dissertações da UNIFACSinstname:Universidade Salvador (UNIFACS)instacron:UNIFACSLICENSElicense.txtlicense.txttext/plain; charset=utf-82165http://teste.tede.unifacs.br:8080/tede/bitstream/tede/600/1/license.txtbd3efa91386c1718a7f26a329fdcb468MD51ORIGINALDissertacao MAXLI BARROSO CAMPOS.pdfDissertacao MAXLI BARROSO CAMPOS.pdfapplication/pdf3056369http://teste.tede.unifacs.br:8080/tede/bitstream/tede/600/2/Dissertacao+MAXLI+BARROSO+CAMPOS.pdf4f59e22091c8c50b81e7d423b13308f9MD52tede/6002017-07-19 19:11:21.297oai:teste.tede.unifacs.br:tede/600Tk9UQTogQ09MT1FVRSBBUVVJIEEgU1VBIFBSw5NQUklBIExJQ0VOw4dBCkVzdGEgbGljZW7Dp2EgZGUgZXhlbXBsbyDDqSBmb3JuZWNpZGEgYXBlbmFzIHBhcmEgZmlucyBpbmZvcm1hdGl2b3MuCgpMSUNFTsOHQSBERSBESVNUUklCVUnDh8ODTyBOw4NPLUVYQ0xVU0lWQQoKQ29tIGEgYXByZXNlbnRhw6fDo28gZGVzdGEgbGljZW7Dp2EsIHZvY8OqIChvIGF1dG9yIChlcykgb3UgbyB0aXR1bGFyIGRvcyBkaXJlaXRvcyBkZSBhdXRvcikgY29uY2VkZSDDoCBVbml2ZXJzaWRhZGUgClhYWCAoU2lnbGEgZGEgVW5pdmVyc2lkYWRlKSBvIGRpcmVpdG8gbsOjby1leGNsdXNpdm8gZGUgcmVwcm9kdXppciwgIHRyYWR1emlyIChjb25mb3JtZSBkZWZpbmlkbyBhYmFpeG8pLCBlL291IApkaXN0cmlidWlyIGEgc3VhIHRlc2Ugb3UgZGlzc2VydGHDp8OjbyAoaW5jbHVpbmRvIG8gcmVzdW1vKSBwb3IgdG9kbyBvIG11bmRvIG5vIGZvcm1hdG8gaW1wcmVzc28gZSBlbGV0csO0bmljbyBlIAplbSBxdWFscXVlciBtZWlvLCBpbmNsdWluZG8gb3MgZm9ybWF0b3Mgw6F1ZGlvIG91IHbDrWRlby4KClZvY8OqIGNvbmNvcmRhIHF1ZSBhIFNpZ2xhIGRlIFVuaXZlcnNpZGFkZSBwb2RlLCBzZW0gYWx0ZXJhciBvIGNvbnRlw7pkbywgdHJhbnNwb3IgYSBzdWEgdGVzZSBvdSBkaXNzZXJ0YcOnw6NvIApwYXJhIHF1YWxxdWVyIG1laW8gb3UgZm9ybWF0byBwYXJhIGZpbnMgZGUgcHJlc2VydmHDp8Ojby4KClZvY8OqIHRhbWLDqW0gY29uY29yZGEgcXVlIGEgU2lnbGEgZGUgVW5pdmVyc2lkYWRlIHBvZGUgbWFudGVyIG1haXMgZGUgdW1hIGPDs3BpYSBhIHN1YSB0ZXNlIG91IApkaXNzZXJ0YcOnw6NvIHBhcmEgZmlucyBkZSBzZWd1cmFuw6dhLCBiYWNrLXVwIGUgcHJlc2VydmHDp8Ojby4KClZvY8OqIGRlY2xhcmEgcXVlIGEgc3VhIHRlc2Ugb3UgZGlzc2VydGHDp8OjbyDDqSBvcmlnaW5hbCBlIHF1ZSB2b2PDqiB0ZW0gbyBwb2RlciBkZSBjb25jZWRlciBvcyBkaXJlaXRvcyBjb250aWRvcyAKbmVzdGEgbGljZW7Dp2EuIFZvY8OqIHRhbWLDqW0gZGVjbGFyYSBxdWUgbyBkZXDDs3NpdG8gZGEgc3VhIHRlc2Ugb3UgZGlzc2VydGHDp8OjbyBuw6NvLCBxdWUgc2VqYSBkZSBzZXUgCmNvbmhlY2ltZW50bywgaW5mcmluZ2UgZGlyZWl0b3MgYXV0b3JhaXMgZGUgbmluZ3XDqW0uCgpDYXNvIGEgc3VhIHRlc2Ugb3UgZGlzc2VydGHDp8OjbyBjb250ZW5oYSBtYXRlcmlhbCBxdWUgdm9jw6ogbsOjbyBwb3NzdWkgYSB0aXR1bGFyaWRhZGUgZG9zIGRpcmVpdG9zIGF1dG9yYWlzLCB2b2PDqiAKZGVjbGFyYSBxdWUgb2J0ZXZlIGEgcGVybWlzc8OjbyBpcnJlc3RyaXRhIGRvIGRldGVudG9yIGRvcyBkaXJlaXRvcyBhdXRvcmFpcyBwYXJhIGNvbmNlZGVyIMOgIFNpZ2xhIGRlIFVuaXZlcnNpZGFkZSAKb3MgZGlyZWl0b3MgYXByZXNlbnRhZG9zIG5lc3RhIGxpY2Vuw6dhLCBlIHF1ZSBlc3NlIG1hdGVyaWFsIGRlIHByb3ByaWVkYWRlIGRlIHRlcmNlaXJvcyBlc3TDoSBjbGFyYW1lbnRlIAppZGVudGlmaWNhZG8gZSByZWNvbmhlY2lkbyBubyB0ZXh0byBvdSBubyBjb250ZcO6ZG8gZGEgdGVzZSBvdSBkaXNzZXJ0YcOnw6NvIG9yYSBkZXBvc2l0YWRhLgoKQ0FTTyBBIFRFU0UgT1UgRElTU0VSVEHDh8ODTyBPUkEgREVQT1NJVEFEQSBURU5IQSBTSURPIFJFU1VMVEFETyBERSBVTSBQQVRST0PDjU5JTyBPVSAKQVBPSU8gREUgVU1BIEFHw4pOQ0lBIERFIEZPTUVOVE8gT1UgT1VUUk8gT1JHQU5JU01PIFFVRSBOw4NPIFNFSkEgQSBTSUdMQSBERSAKVU5JVkVSU0lEQURFLCBWT0PDiiBERUNMQVJBIFFVRSBSRVNQRUlUT1UgVE9ET1MgRSBRVUFJU1FVRVIgRElSRUlUT1MgREUgUkVWSVPDg08gQ09NTyAKVEFNQsOJTSBBUyBERU1BSVMgT0JSSUdBw4fDlUVTIEVYSUdJREFTIFBPUiBDT05UUkFUTyBPVSBBQ09SRE8uCgpBIFNpZ2xhIGRlIFVuaXZlcnNpZGFkZSBzZSBjb21wcm9tZXRlIGEgaWRlbnRpZmljYXIgY2xhcmFtZW50ZSBvIHNldSBub21lIChzKSBvdSBvKHMpIG5vbWUocykgZG8ocykgCmRldGVudG9yKGVzKSBkb3MgZGlyZWl0b3MgYXV0b3JhaXMgZGEgdGVzZSBvdSBkaXNzZXJ0YcOnw6NvLCBlIG7Do28gZmFyw6EgcXVhbHF1ZXIgYWx0ZXJhw6fDo28sIGFsw6ltIGRhcXVlbGFzIApjb25jZWRpZGFzIHBvciBlc3RhIGxpY2Vuw6dhLgo=Biblioteca Digital de Teses e Dissertaçõeshttp://tede.unifacs.br/http://tede.unifacs.br:8080/oai/requestbibliotecadigital@unifacs.br||bibliotecadigital@unifacs.bropendoar:2017-07-19T22:11:21Biblioteca Digital de Teses e Dissertações da UNIFACS - Universidade Salvador (UNIFACS)false |
dc.title.por.fl_str_mv |
Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN |
title |
Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN |
spellingShingle |
Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN CAMPOS, Maxli Barroso Redes Definidas por Software OpenFlow – SDN Ameaças de segurança Tratamento e resposta a incidente Ciências Exatas e da Terra |
title_short |
Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN |
title_full |
Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN |
title_fullStr |
Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN |
title_full_unstemmed |
Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN |
title_sort |
Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN |
author |
CAMPOS, Maxli Barroso |
author_facet |
CAMPOS, Maxli Barroso |
author_role |
author |
dc.contributor.advisor1.fl_str_mv |
MARTINS, Joberto S. B. |
dc.contributor.referee1.fl_str_mv |
SAMPAIO, Leobino Nascimento |
dc.contributor.referee2.fl_str_mv |
SAMPAIO, Paulo Nazareno Maia |
dc.contributor.author.fl_str_mv |
CAMPOS, Maxli Barroso |
contributor_str_mv |
MARTINS, Joberto S. B. SAMPAIO, Leobino Nascimento SAMPAIO, Paulo Nazareno Maia |
dc.subject.por.fl_str_mv |
Redes Definidas por Software OpenFlow – SDN Ameaças de segurança Tratamento e resposta a incidente |
topic |
Redes Definidas por Software OpenFlow – SDN Ameaças de segurança Tratamento e resposta a incidente Ciências Exatas e da Terra |
dc.subject.cnpq.fl_str_mv |
Ciências Exatas e da Terra |
description |
Software Defined Networking (SDN) paradimg decouples control plane and of data plane, providing high programmability and a global view of the network. The adoption of this approach is growing in business networks, data centers and critical infrastructures such as smart grids. However, it is a challenge not only to provide security in these new generation networks but also to allow a network attack to be susceptible to an incident handling and forensic expertise procedure. In this way, this master’s degree dissertation proposes the implementation of a Environment for Flexible Attacks Detection and Prevention in OpenFlow/SDN Networks, which includes the setup of a real OpenFlow/SDN Testbed environment and implemented mechanisms for detection and response to threats capable of providing resources for intrusion and attack analysis. These mechanisms were implemented with the goal of providing security event monitoring and treatment in a flexible way, by categorizing the attack types and associated with whitelist and blacklist resources, exploiting one of the main characteristics of the OpenFlow network controller to be Extensible and programmable. The validation of the environment was done through simulation based on 5 (five) different scenarios and the obtained results demonstrate that the different classes of network attacks were identified and treated according to the defined strategy. Also, the mechanisms of protection and analysis of the intrusion into the OpenFlow/SDN network Testbed environment were effective and had the expected behavior according to each class of traffic defined in the proposal. |
publishDate |
2017 |
dc.date.accessioned.fl_str_mv |
2017-07-19T22:11:21Z |
dc.date.issued.fl_str_mv |
2017-04-03 |
dc.type.status.fl_str_mv |
info:eu-repo/semantics/publishedVersion |
dc.type.driver.fl_str_mv |
info:eu-repo/semantics/masterThesis |
format |
masterThesis |
status_str |
publishedVersion |
dc.identifier.citation.fl_str_mv |
CAMPOS, Maxli Barroso. Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN. 2017. 139p. Dissertação (Sistemas e Computação) - UNIFACS Universidade Salvador, Salvador, 2017. |
dc.identifier.uri.fl_str_mv |
http://teste.tede.unifacs.br:8080/tede/handle/tede/600 |
identifier_str_mv |
CAMPOS, Maxli Barroso. Um ambiente flexível para detecção e prevenção flexível de ataques em redes OpenFlow/SDN. 2017. 139p. Dissertação (Sistemas e Computação) - UNIFACS Universidade Salvador, Salvador, 2017. |
url |
http://teste.tede.unifacs.br:8080/tede/handle/tede/600 |
dc.language.iso.fl_str_mv |
por |
language |
por |
dc.rights.driver.fl_str_mv |
info:eu-repo/semantics/openAccess |
eu_rights_str_mv |
openAccess |
dc.format.none.fl_str_mv |
application/pdf |
dc.publisher.none.fl_str_mv |
Universidade Salvador |
dc.publisher.program.fl_str_mv |
Sistemas e Computação |
dc.publisher.initials.fl_str_mv |
UNIFACS |
dc.publisher.country.fl_str_mv |
Brasil |
dc.publisher.department.fl_str_mv |
Sistemas e Computação |
publisher.none.fl_str_mv |
Universidade Salvador |
dc.source.none.fl_str_mv |
reponame:Biblioteca Digital de Teses e Dissertações da UNIFACS instname:Universidade Salvador (UNIFACS) instacron:UNIFACS |
instname_str |
Universidade Salvador (UNIFACS) |
instacron_str |
UNIFACS |
institution |
UNIFACS |
reponame_str |
Biblioteca Digital de Teses e Dissertações da UNIFACS |
collection |
Biblioteca Digital de Teses e Dissertações da UNIFACS |
bitstream.url.fl_str_mv |
http://teste.tede.unifacs.br:8080/tede/bitstream/tede/600/1/license.txt http://teste.tede.unifacs.br:8080/tede/bitstream/tede/600/2/Dissertacao+MAXLI+BARROSO+CAMPOS.pdf |
bitstream.checksum.fl_str_mv |
bd3efa91386c1718a7f26a329fdcb468 4f59e22091c8c50b81e7d423b13308f9 |
bitstream.checksumAlgorithm.fl_str_mv |
MD5 MD5 |
repository.name.fl_str_mv |
Biblioteca Digital de Teses e Dissertações da UNIFACS - Universidade Salvador (UNIFACS) |
repository.mail.fl_str_mv |
bibliotecadigital@unifacs.br||bibliotecadigital@unifacs.br |
_version_ |
1800393065886646272 |