HogMap: Using SDNs to incentivize collaborative security monitoring

SDN-NFV Security 2016 - Proceedings of the 2016 ACM International Workshop on Security in Software Defined Networks and Network Function Virtualization, co-located with CODASPY 2016

Volumn , Issue , 2016, Pages 7-12

  Pan, Xiang ^a   Yegneswaran, Vinod ^a   Chen, Yan ^a   Porras, Phillip ^a   Shin, Seungwon ^a  

^a NONE

Author keywords

[No Author keywords available]

Indexed keywords

SOFTWARE DEFINED NETWORKING; TRANSFER FUNCTIONS; VIRTUAL REALITY;

COLLABORATIVE MEASUREMENTS; COLLABORATIVE SECURITIES; CONNECTION MIGRATION; DYNAMIC MIGRATION; ENTERPRISE NETWORKS; INTELLIGENCE SERVICES; MALICIOUS TRAFFIC; TRAFFIC FILTERING;

NETWORK SECURITY;

EID: 84966671352     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2876019.2876023     Document Type: Conference Paper

References (31)

1. E.Keller, S. Ghorbani, M. Caesar, and J. Rexford, "Live migration of an entire network (and its hosts)," in Proceedings of the 11th ACM Workshop on Hot Topics in Networks, pp. 109-114,ACM, 2012.
2. D. Levin, A.Wundsam, B. Heller, N. Handigol, and A. Feldmann, "Logically centralized: state distribution trade-offs in software defined networks," in Proceedings of the first workshop on Hot topics in software defined networks, pp. 1-6,ACM, 2012.
3. Radware, "Defenseflow SDN based network ddos, application dos and apt protection." http://opennetsummit.org/archives/mar14/site/pdf/2014/SDN-idol/Radware-SDN-Idol-Proposal.pdf.
4. D. Moore, C. Shannon, G. M.Voelker, and S. Savage, "Network telescopes: Technical report," UCSD Computer Science.
5. V.Yegneswaran, P. Barford, andV. Paxson, "Using honeynets for internet situational awareness," in In Proceedings of the FourthWorkshop on Hot Topics in Networks (HotNets IV, 2005.
6. J. Zhang, P. A. Porras, and J. Ullrich, "Highly predictive blacklisting.," in USENIX Security Symposium, pp. 107-122, 2008.
7. K. Levchenko, A. Pitsillidis, N. Chachra, B. Enright, M. Félegyházi, C. Grier, T. Halvorson, C. Kanich, C. Kreibich, H. Liu, et al., "Click trajectories: End-To-end analysis of the spam value chain," in Security and Privacy (SP), 2011 IEEE Symposium on, pp. 431-446, IEEE, 2011.
8. C. Kanich, N.Weaver, D. McCoy, T. Halvorson, C. Kreibich, K. Levchenko,V. Paxson, G. M.Voelker, and S. Savage, "Show me the money: Characterizing spam-Advertised revenue.," in USENIX Security Symposium, pp. 15-15, 2011.
9. S. Meiklejohn, M. Pomarole, G. Jordan, K. Levchenko, D. McCoy, G. M.Voelker, and S. Savage, "A fistful of bitcoins: characterizing payments among men with no names," in Proceedings of the 2013 conference on Internet measurement conference, pp. 127-140,ACM, 2013.
10. P. Inacio, "Honeymole 2.0." https://www.honeynet.org/project/Honeymole.
11. R. Berthier, J.Vehent, T. Coquelin, and T. K. Lengyel, "Honeybrid: Hybrid honeypot framework." http://honeybrid.sourceforge.net/.
12. "Shadowserver." https://www.shadowserver.org/wiki/.
13. R. Chakravorty, S. Agarwal, S. Banerjee, and I. Pratt, "Mob: Amobile bazaar for wide-Area wireless services," in Proceedings of the 11th annual international conference on Mobile computing and networking, pp. 228-242,ACM, 2005.
14. "ebay: Electronics, cars, fashion, collectibles, coupons and more online shopping." http://www.ebay.com/.
15. S. Shin,V.Yegneswaran, P. Porras, and G. Gu, "Avant-guard: Scalable and vigilant switch flowmanagement in software-defined networks," in Proceedings of the 2013ACMSIGSACconference on Computer&communications security, pp. 413-424, ACM, 2013.
16. Dionaea, "Dionaea -catches bugs." http://dionaea.carnivore.it/.
17. N. Provos, "Developments of the honeyd virtual honeypot." http://www.honeyd.org/.
18. D. Dagon, C. C. Zou, andW. Lee, "Modeling botnet propagation using time zones.," in NDSS, vol. 6, pp. 2-13, 2006.
19. "Openflowswitching reference system." http://archive.openflow.org/wp/downloads/.
20. "Floodlight rest api." http://www.openflowhub. org/display/floodlightcontroller/Floodlight+REST+API.
21. S. K. Fayazbakhsh, L. Chiang,V. Sekar, M.Yu, and J. C. Mogul, "Enforcing network-wide policies in the presence of dynamic middlebox actions using flowtags," in Proc. USENIX NSDI, 2014.
22. "Aws | amazon elastic compute cloud (ec2) -scalable cloud hosting." http://aws.amazon.com/ec2/.
23. P. Porras, S. Cheung, M. Fong, K. Skinner, and V. Yegneswaran, "Securing the software-defined network control layer," in NDSS, 2015.
24. "Pica8: White box SDN." http://www.pica8.com/.
25. D. Moore, C. Shannon, D. J. Brown, G. M. Voelker, and S. Savage, "Inferring internet denial-of-service activity," ACMTransactions on Computer Systems.
26. D. Moore, V. Paxson, S. Savage, C. Shannon, S. Stanford, and N.Weaver, "The spread of the sapphire/slammerworm." http://www.caida.org/publications/papers/2003/sapphire/sapphire.html.
27. R. Pang,V.Yegneswaran, P. Barford, V. Paxson, and L. Peterson, "Characteristics of internet background radiation," in Proceedings of the 4th ACMSIGCOMM conference on Internet measurement, pp. 27-40,ACM, 2004.
28. A. Dainotti, K. C. Claffy, M. Russo, C. Squarcella, M. Chiesa, A. Pescap, and E. Aben, "Analysis of country-wide internet outages caused by censorship," in In ACMSIGCOMM conference on Internet measurement, 2011.
29. M. Bailey, E. Cooke, F. Jahanian, J. Nazario, D.Watson, et al., "The internet motion sensor-A distributed blackhole monitoring system.," in NDSS, 2005.
30. C. Kreibich, N.Weaver, C. Kanich, "Gq: Practical containment for measuring modern malware systems," in Proceedings of the 2011 ACMSIGCOMM conference on Internet measurement conference, pp. 397-412,ACM, 2011.
31. M. Vrable, J. Ma, J. Chen, D. Moore, E.Vandekieft, A. C. Snoeren, G. M.Voelker, and S. Savage, "Scalability, fidelity, and containment in the potemkin virtual honeyfarm," ACMSIGOPS Operating Systems Review, vol. 39, no. 5, pp. 148-162, 2005.