Statistical Approach for Detecting Malicious PCE Activity in Multi-domain Networks

被引：0

作者：

Gharbaoui, Molka ^{[1
]}

Paolucci, Francesco ^{[1
]}

Giorgetti, Alessio ^{[1
]}

Martini, Barbara

Castoldi, Piero ^{[1
]}

机构：

[1] Scuola Super Sant Anna, Pisa, Italy

来源：

2012 IEEE 13TH INTERNATIONAL CONFERENCE ON HIGH PERFORMANCE SWITCHING AND ROUTING (HPSR) | 2012年

关键词：

D O I：

暂无

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

Inter-domain traffic engineering solutions based on the Path Computation Element (PCE) architecture are exposed to information confidentiality issues between network carriers. Licit PCE Protocol (PCEP) request sequences may hide a malicious intention to discover critical intra-domain information through correlations among replies. This work presents an innovative anomaly-based statistical approach based on the Sequential Hypothesis Testing (SHT) aiming to detect malicious utilization of PCEP by peer clients. A novel combined multi-feature SHT formulation is presented in combination with different decision policies for definitely ascertaining whether the behavior of the Path Computation Client (PCC) is malicious or not. Simulation results show improved performance in terms of detection and false-alarms probabilities while guaranteeing a trade-off between detection accuracy and delay.

引用

页数：6

共 50 条

[1] Scalable Path Computation Flooding Approach for PCE-Based Multi-domain Networks
Perello, Jordi
Hernandez-Sola, Guillem
Agraz, Fernando
Spadaro, Salvatore
Comellas, Jaume
[J]. ETRI JOURNAL, 2010, 32 (04) : 622 - 625
[2] Preserving Confidentiality in PCE-based Multi-domain Networks
Paolucci, Francesco
Gharbaoui, Molka
Giorgetti, Alessio
Cugini, Filippo
Martini, Barbara
Valcarenghi, Luca
Castoldi, Piero
[J]. JOURNAL OF OPTICAL COMMUNICATIONS AND NETWORKING, 2011, 3 (05) : 465 - 474
[3] Survivable Path Computation in PCE-Based Multi-domain Networks
Zhang, Qiong
Hasan, Mohammad M.
Wang, Xi
Palacharla, Paparao
Sekiya, Motoyoshi
[J]. JOURNAL OF OPTICAL COMMUNICATIONS AND NETWORKING, 2012, 4 (06) : 457 - 467
[4] Multi-domain Routing Technology based on PCE for Intelligent Optical Networks
Zhou, Hongsheng
Song, Xiaoqian
Lin, Li
Du, Li
[J]. PROCEEDINGS OF 2017 6TH INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND NETWORK TECHNOLOGY (ICCSNT 2017), 2017, : 415 - 419
[5] Guaranteeing Confidentiality in Multi-domain Networks: the PCE Anomaly Detector (PAD)
Gharbaoui, M.
Paolucci, F.
Giorgetti, A.
Castoldi, P.
Martini, B.
[J]. 2013 IFIP/IEEE INTERNATIONAL SYMPOSIUM ON INTEGRATED NETWORK MANAGEMENT (IM 2013), 2013, : 485 - 491
[6] PCE-based fast path control in multi-domain photonic networks
Iizawa, Yohei
Araki, Soichiro
Ishida, Shinya
Nishioka, Itaru
Shimada, Kohei
Hasegawa, Hiroshi
Sato, Ken-ichi
[J]. OPTICAL SWITCHING AND NETWORKING, 2013, 10 (01) : 32 - 43
[7] Hierarchical PCE in GMPLS-based Multi-Domain Wavelength Switched Optical Networks
Giorgetti, A.
Paolucci, F.
Cugini, F.
Castoldi, P.
[J]. 2011 OPTICAL FIBER COMMUNICATION CONFERENCE AND EXPOSITION (OFC/NFOEC) AND THE NATIONAL FIBER OPTIC ENGINEERS CONFERENCE, 2011,
[8] PCE Communication Protocol for Resource Advertisement in Multi-domain BGP-based Networks
Cugini, F.
Paolucci, F.
Valcarenghi, L.
Castoldi, P.
Welin, A.
[J]. OFC: 2009 CONFERENCE ON OPTICAL FIBER COMMUNICATION, VOLS 1-5, 2009, : 2612 - +
[9] Towards a Control Orchestration Protocol for Multi-tenant Multi-domain SDN/PCE Transport Networks
Munoz, Raul
Vilalta, Ricard
Casellas, Ramon
Martinez, Ricardo
[J]. 2015 OPTICAL FIBER COMMUNICATIONS CONFERENCE AND EXHIBITION (OFC), 2015,
[10] Enhanced domain disjoint backward recursive TE path computation for PCE-based multi-domain networks
Hernandez-Sola, Guillem
Perello, Jordi
Agraz, Fernando
Velasco, Luis
Spadaro, Salvatore
Junyent, Gabriel
[J]. PHOTONIC NETWORK COMMUNICATIONS, 2011, 21 (02) : 141 - 151

← 1 2 3 4 5 →