Strona: Problems of detecting anomalies in SDN networks / Department of Complex Systems

A  A+ A++
Search
Sign in
  • PL
  • EN

Problems of detecting anomalies in SDN networks

2024-10-08
, red. Bartosz Kowal
ASTRJ journal logo

We invite you to read the latest scientific paper prepared by the Department of Complex Systems team. The work entitled Detection of Incidents and Anomalies in Software-Defined Network – Based Implementations of Critical Infrastructure Resulting in Adaptive System Changes, concerns the problems of detecting anomalies in SDN networks. The study presents an example of an integrated software-defined network (SDN) system with heterogeneous technological instances based on the Linux platform. The paper contains experimental appraoch; two research stations with a POX controller and OVS (Open vSwitch) switches were used. The first research station conducted research based on ICMP traffic, the second analyzed MQTT traffic. The capabilities of these systems were tested in terms of responding to detected incidents and traffic anomalies. In particular, their proper reactions to anomalies were tested, as well as the possibility of continuous monitoring of packet transmission between individual network components. The effectiveness of SDN solutions in increasing the security and adaptability of critical infrastructure systems was examined. In order to isolate and optimize resource management, some components, such as POX or the MQTT broker, were launched in Docker containers. The test environment used both hardware enclosures and prepared software, enabling comprehensive design and testing of networks based on the OpenFlow protocol used in the SDN architecture, enabling the separation of control from traffic in computer networks. The results of these studies allow for the implementation of anomaly detection solutions in critical infrastructure systems that will continuously adapt to changing conditions, e.g. in the event of an attack on such infrastructure or its physical damage in a selected node.

P. Organiściak, P. Kuraś, D. Strzałka, A. Paszkiewicz, M. Bolanowski, B. Kowal, M. Ćmil, P. Dymora, M. Mazurek, V. Vanivska; Detection of Incidents and Anomalies in Software-Defined Network – Based Implementations of Critical Infrastructure Resulting in Adaptive System Changes, Advances in Science and Technology. Research Journal, 2024; 18(7):176-191.

http://www.astrj.com/pdf-192641-115094?filename=Detection%20of%20Incidents.pdf

Back to news list