TY - GEN
T1 - SandboxNet
T2 - 2020 International Computer Symposium, ICS 2020
AU - Chi, Po Wen
AU - Wang, Ming Hung
AU - Zheng, Yu
N1 - Publisher Copyright:
© 2020 IEEE.
PY - 2020/12
Y1 - 2020/12
N2 - Software Defined Networking (SDN) is a concept that decouples the control plane and the user plane. So the network administrator can easily control the network behavior through its own programs. However, the administrator may unconsciously apply some malicious programs on SDN controllers so that the whole network may be under the attacker's control. In this paper, we discuss the malicious software issue on SDN networks. We use the idea of sandbox to propose a sandbox network called SanboxNet. We emulate a virtual isolated network environment to verify the SDN application functions. With continuous monitoring, we can locate the suspicious SDN applications. We also consider the sandbox-evading issue in our framework. The emulated networks and the real world networks will be indistinguishable to the SDN controller.
AB - Software Defined Networking (SDN) is a concept that decouples the control plane and the user plane. So the network administrator can easily control the network behavior through its own programs. However, the administrator may unconsciously apply some malicious programs on SDN controllers so that the whole network may be under the attacker's control. In this paper, we discuss the malicious software issue on SDN networks. We use the idea of sandbox to propose a sandbox network called SanboxNet. We emulate a virtual isolated network environment to verify the SDN application functions. With continuous monitoring, we can locate the suspicious SDN applications. We also consider the sandbox-evading issue in our framework. The emulated networks and the real world networks will be indistinguishable to the SDN controller.
KW - Malicious Soft-ware Detection
KW - Sandbox
KW - Software Defined Networking
UR - http://www.scopus.com/inward/record.url?scp=85102201340&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85102201340&partnerID=8YFLogxK
U2 - 10.1109/ICS51289.2020.00085
DO - 10.1109/ICS51289.2020.00085
M3 - Conference contribution
AN - SCOPUS:85102201340
T3 - Proceedings - 2020 International Computer Symposium, ICS 2020
SP - 397
EP - 402
BT - Proceedings - 2020 International Computer Symposium, ICS 2020
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 17 December 2020 through 19 December 2020
ER -