Visible to the public SandboxNet: An Online Malicious SDN Application Detection Framework for SDN Networking

TitleSandboxNet: An Online Malicious SDN Application Detection Framework for SDN Networking
Publication TypeConference Paper
Year of Publication2020
AuthorsChi, Po-Wen, Wang, Ming-Hung, Zheng, Yu
Conference Name2020 International Computer Symposium (ICS)
Date PublishedDec. 2020
PublisherIEEE
ISBN Number978-1-7281-9255-0
KeywordsCollaboration, collaboration agreements, composability, integrated circuits, Malicious Soft-ware Detection, Malware, Monitoring, policy-based governance, pubcrawl, sandbox, Sandboxing, Scalability, software defined networking, Tools
Abstract

Software Defined Networking (SDN) is a concept that decouples the control plane and the user plane. So the network administrator can easily control the network behavior through its own programs. However, the administrator may unconsciously apply some malicious programs on SDN controllers so that the whole network may be under the attacker's control. In this paper, we discuss the malicious software issue on SDN networks. We use the idea of sandbox to propose a sandbox network called SanboxNet. We emulate a virtual isolated network environment to verify the SDN application functions. With continuous monitoring, we can locate the suspicious SDN applications. We also consider the sandbox-evading issue in our framework. The emulated networks and the real world networks will be indistinguishable to the SDN controller.

URLhttps://ieeexplore.ieee.org/document/9359040
DOI10.1109/ICS51289.2020.00085
Citation Keychi_sandboxnet_2020