Upgrade to Pro — share decks privately, control downloads, hide ads and more …

SDN Final Report

229b1596ce57cd0935a2bacd410d87a0?s=47 adr
June 21, 2019

SDN Final Report

229b1596ce57cd0935a2bacd410d87a0?s=128

adr

June 21, 2019
Tweet

Transcript

  1. SDN-Based Intrusion Prevention System Software-Defined Networking and Function Virtualization

  2. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table
  3. >_SDN Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv
  4. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table External Network Controller Service Ctrl Srv
  5. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.
  6. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.
  7. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.
  8. >_Issue Host A ... Switch A Service Flow Table Manager

    Host C Emploee Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc. $>/bin/sh Bingo! Get Shell.
  9. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Packets Packets Packets Intrusion Detection System
  10. >_ Host A Switch Service Flow Table Host B Host

    C IDS Srv Packets Packets Packets IDS Intrusion Detection System Tcpdump
  11. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Intrusion Detection System Hacked Bruteforce credentials (Telnet/SSH/RDP/AD) SMTP (Email) Godmode
  12. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Intrusion Detection System Hacked Bruteforce credentials (Telnet/SSH/RDP/AD) SMTP (Email) Godmode Marked As Pwned Devices
  13. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Scouting Updating Flow
  14. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Isolating Hacked Host
  15. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Isolating Hacked Host
  16. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv IDS Srv IDS Srv
  17. Demo

  18. SDN-Based Intrusion Prevention System Thanks.