A FORENSIC METHODOLOGY FOR SOFTWARE-DEFINED NETWORK SWITCHES

被引：1

作者：

Chin, Tommy ^{[1
]}

Xiong, Kaiqi ^{[2
]}

机构：

[1] Rochester Inst Technol, Comp Secur, Rochester, NY 14623 USA

[2] Univ S Florida, Cybersecur Math & Elect Engn, Tampa, FL USA

来源：

ADVANCES IN DIGITAL FORENSICS XIII | 2017年 / 511卷

基金：

美国国家科学基金会;

关键词：

Software-defined networks; incident response; forensics; switches;

D O I：

10.1007/978-3-319-67208-3_6

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This chapter presents a forensic methodology for computing systems in a software-defined networking environment that consists of an application plane, control plane and data plane. The methodology involves a forensic examination of the software-defined networking infrastructure from the perspective of a switch. Memory images of a live switch and southbound communications are leveraged to enable forensic investigators to identify and locate potential evidence for triage in real time. The methodology is evaluated using a real-world testbed exposed to network attacks. The experimental results demonstrate the effectiveness of the methodology for forensic investigations of software-defined networking infrastructures.

引用

页码：97 / 110

页数：14

共 50 条

[1] Future Technology: Software-Defined Network (SDN) Forensic
Waseem, Quadri
Alshamrani, Sultan S.
Nisar, Kashif
Wan Din, Wan Isni Sofiah
Alghamdi, Ahmed Saeed
[J]. SYMMETRY-BASEL, 2021, 13 (05):
[2] NetWatch: Empowering Software-Defined Network Switches for Packet Filtering
Balagopal, Deepa
Rani, X. Agnise Kala
[J]. PROCEEDINGS OF THE 2015 INTERNATIONAL CONFERENCE ON APPLIED AND THEORETICAL COMPUTING AND COMMUNICATION TECHNOLOGY (ICATCCT), 2015, : 837 - 840
[3] Modelling Software-Defined Networking: Software and hardware switches
Singh, Deepak
Ng, Bryan
Lai, Yuan-Cheng
Lin, Ying-Dar
Seah, Winston K. G.
[J]. JOURNAL OF NETWORK AND COMPUTER APPLICATIONS, 2018, 122 : 24 - 36
[4] The Software-Defined Network Revolution
Canini, Marco
Jungers, Raphael
[J]. ERCIM NEWS, 2014, (97): : 18 - 19
[5] Modelling Switches with Internal Buffering in Software-Defined Networks
Singh, Deepak
Ng, Bryan
Lai, Yuan-Cheng
Lin, Ying-Dar
Seah, Winston K. G.
[J]. 2018 27TH INTERNATIONAL CONFERENCE ON COMPUTER COMMUNICATION AND NETWORKS (ICCCN), 2018,
[6] A Flow Table Compression Algorithm for Improving the Storage Capacity of Software-Defined Network Switches
Shen, Jianliang
Wang, Chongyue
Tang, Xiantuo
Zhang, Xia
[J]. Hsi-An Chiao Tung Ta Hsueh/Journal of Xi'an Jiaotong University, 2022, 56 (11): : 186 - 194
[7] On SDPN: Integrating the Software-Defined Perimeter (SDP) and the Software-Defined Network (SDN) Paradigms
Lefebvre, Michael
Engels, Daniel W.
Nair, Suku
[J]. 2022 IEEE CONFERENCE ON COMMUNICATIONS AND NETWORK SECURITY (CNS), 2022, : 353 - 358
[8] Simulation of Network Migration to Software-Defined Network
Rahim, Mukti
Hikmatullah, Muhammad Rizky
Saskara, GedeArna Jude
Rachmana, Nana S.
[J]. 2015 9TH INTERNATIONAL CONFERENCE ON TELECOMMUNICATION SYSTEMS SERVICES AND APPLICATIONS (TSSA), 2015,
[9] Extending the Software-defined Network Boundary
Michel, Oliver
Coughlin, Michael
Keller, Eric
[J]. ACM SIGCOMM COMPUTER COMMUNICATION REVIEW, 2014, 44 (04) : 381 - 382
[10] Strengthen Software-Defined Network in Cloud
Sun, Guoyou
Cheng, Shaoyin
Jiang, Fan
[J]. PROCEEDINGS OF 2016 IEEE 18TH INTERNATIONAL CONFERENCE ON HIGH PERFORMANCE COMPUTING AND COMMUNICATIONS; IEEE 14TH INTERNATIONAL CONFERENCE ON SMART CITY; IEEE 2ND INTERNATIONAL CONFERENCE ON DATA SCIENCE AND SYSTEMS (HPCC/SMARTCITY/DSS), 2016, : 385 - 392

← 1 2 3 4 5 →