Upgrade to Pro — share decks privately, control downloads, hide ads and more …

SDN Final Report

adr
June 21, 2019
Technology
0
400

SDN Final Report

adr

June 21, 2019
Tweet

More Decks by adr

See All by adr
Skrull Like A King: 從重兵看守的天眼防線殺出重圍
aaaddress1
3
1.1k
Rebuild The Heaven's Gate: from 32 bit Hell back to Heaven Wonderland
aaaddress1
0
600
重建天堂之門:從 32bit 地獄一路打回天堂聖地
aaaddress1
0
200
Reversing In Wonderland: Neural Network Based Malware Detection Techniques
aaaddress1
2
590
CYBERSEC: 唉唷,你的簽章根本沒在驗啦。
aaaddress1
1
3.3k
SITCON: Playing Win32 Like a K!NG ;)
aaaddress1
2
940
NTUST [2019]: Windows Reversing
aaaddress1
0
940
Duplicate Paths Attack: Get Elevated Privilege from Forged Identities
aaaddress1
0
1.2k
Computer Security 資安實務: Windows Reversing [Dark Art]
aaaddress1
8
1.6k

Other Decks in Technology

See All in Technology
PCL (Point Cloud Library)の基本となぜ点群処理か_2023年_第2版.pdf
cvmlexpertguide
0
170
💰年度末予算消化祭💰 Large Memory Instance で 画像分類してみた
__allllllllez__
0
100
IoT から見る AWS re:invent 2022 ― AWSのIoTの歴史を添えて/Point of view the AWS re:invent 2022 with IoT - with a history of IoT in AWS
ma2shita
0
260
01_ユーザーリサーチ実施の進め方
kouzoukaikaku
0
500
AWS re:Invent 2022で発表された新機能を試してみた ~Cloud OperationとSecurity~ / New Cloud Operation and Security Features Announced at AWS reInvent 2022
yuj1osm
1
210
OpenShift.Run2023_create-aro-with-terraform
ishiitaiki20fixer
1
300
Stripe / Okta Customer Identity Cloud(旧Auth0) の採用に至った理由 〜モリサワの SaaS 戦略〜
tomuro
0
130
SmartHRからOktaへのSCIM連携で作り出すHRドリブンのアカウント管理
jousysmiler
1
120
ラズパイとGASで加湿器の消し忘れをLINEでリマインド&操作
minako__ph
0
150
地方自治体業務あるある ーアナログ最適化編-
y150saya
1
270
Deep dive in Reserved Instance ~脳死推奨量購入からの脱却~
kzkmaeda
0
540
立ち止まっても、寄り道しても / even if I stop, even if I take a detour
katoaz
0
590

Featured

See All Featured
JazzCon 2018 Closing Keynote - Leadership for the Reluctant Leader
reverentgeek
175
9.1k
No one is an island. Learnings from fostering a developers community.
thoeni
12
1.5k
Music & Morning Musume
bryan
37
4.6k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
29
7.9k
jQuery: Nuts, Bolts and Bling
dougneiner
57
6.6k
Why Our Code Smells
bkeepers
PRO
326
55k
Automating Front-end Workflow
addyosmani
1351
200k
A better future with KSS
kneath
230
16k
What the flash - Photography Introduction
edds
64
10k
Art, The Web, and Tiny UX
lynnandtonic
284
18k
Reflections from 52 weeks, 52 projects
jeffersonlam
338
18k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
318
19k

Transcript

  1. SDN-Based Intrusion Prevention System Software-Defined Networking and Function Virtualization

  2. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table

  3. >_SDN Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv

  4. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table External Network Controller Service Ctrl Srv

  5. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.

  6. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.

  7. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.

  8. >_Issue Host A ... Switch A Service Flow Table Manager

    Host C Emploee Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc. $>/bin/sh Bingo! Get Shell.

  9. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Packets Packets Packets Intrusion Detection System

  10. >_ Host A Switch Service Flow Table Host B Host

    C IDS Srv Packets Packets Packets IDS Intrusion Detection System Tcpdump

  11. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Intrusion Detection System Hacked Bruteforce credentials (Telnet/SSH/RDP/AD) SMTP (Email) Godmode

  12. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Intrusion Detection System Hacked Bruteforce credentials (Telnet/SSH/RDP/AD) SMTP (Email) Godmode Marked As Pwned Devices

  13. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Scouting Updating Flow

  14. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Isolating Hacked Host

  15. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Isolating Hacked Host

  16. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv IDS Srv IDS Srv

  17. Demo

  18. SDN-Based Intrusion Prevention System Thanks.