2017-11-11
AUTHORSEmilia Tantar , Alexandru-Adrian Tantar , Miroslaw Kantor , Thomas Engel
ABSTRACTThrough this position paper we aim at providing a prototype cognitive security service for anomaly detection in Software Defined Networks (SDNs). We equally look at strengthening attack detection capabilities in SDNs, through the addition of predictive analytics capabilities. For this purpose, we build a learning-based anomaly detection service called Learn2Defend, based on functionalities provided by Opendaylight. A potential path to cognition is detailed, by means of a Gaussian Processes driven engine that makes use of traffic characteristics/behavior profiles e.g. smoothness of the frequency of flows traversing a given node. Learn2Defend follows a two-fold approach, with unsupervised learning and prediction mechanisms, all in an on-line dynamic SDN context. The prototype does not target to provide an universally valid predictive analytics framework for security, but rather to offer a tool that supports the integration of cognitive techniques in the SDN security services. More... »
PAGES67-81
EVOLVE - A Bridge between Probability, Set Oriented Numerics, and Evolutionary Computation VI
ISBN
978-3-319-69708-6
978-3-319-69710-9
http://scigraph.springernature.com/pub.10.1007/978-3-319-69710-9_5
DOIhttp://dx.doi.org/10.1007/978-3-319-69710-9_5
DIMENSIONShttps://app.dimensions.ai/details/publication/pub.1092634258
JSON-LD is the canonical representation for SciGraph data.
TIP: You can open this SciGraph record using an external JSON-LD service: JSON-LD Playground Google SDTT
[
{
"@context": "https://springernature.github.io/scigraph/jsonld/sgcontext.json",
"about": [
{
"id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/08",
"inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/",
"name": "Information and Computing Sciences",
"type": "DefinedTerm"
},
{
"id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/0801",
"inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/",
"name": "Artificial Intelligence and Image Processing",
"type": "DefinedTerm"
},
{
"id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/0806",
"inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/",
"name": "Information Systems",
"type": "DefinedTerm"
}
],
"author": [
{
"affiliation": {
"alternateName": "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg",
"id": "http://www.grid.ac/institutes/grid.16008.3f",
"name": [
"Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg"
],
"type": "Organization"
},
"familyName": "Tantar",
"givenName": "Emilia",
"id": "sg:person.014120034333.51",
"sameAs": [
"https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.014120034333.51"
],
"type": "Person"
},
{
"affiliation": {
"alternateName": "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg",
"id": "http://www.grid.ac/institutes/grid.16008.3f",
"name": [
"Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg"
],
"type": "Organization"
},
"familyName": "Tantar",
"givenName": "Alexandru-Adrian",
"id": "sg:person.012203126757.71",
"sameAs": [
"https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.012203126757.71"
],
"type": "Person"
},
{
"affiliation": {
"alternateName": "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg",
"id": "http://www.grid.ac/institutes/grid.16008.3f",
"name": [
"Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg"
],
"type": "Organization"
},
"familyName": "Kantor",
"givenName": "Miroslaw",
"id": "sg:person.010477475103.76",
"sameAs": [
"https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.010477475103.76"
],
"type": "Person"
},
{
"affiliation": {
"alternateName": "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg",
"id": "http://www.grid.ac/institutes/grid.16008.3f",
"name": [
"Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg"
],
"type": "Organization"
},
"familyName": "Engel",
"givenName": "Thomas",
"id": "sg:person.014715437773.25",
"sameAs": [
"https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.014715437773.25"
],
"type": "Person"
}
],
"datePublished": "2017-11-11",
"datePublishedReg": "2017-11-11",
"description": "Through this position paper we aim at providing a prototype cognitive security service for anomaly detection in Software Defined Networks (SDNs). We equally look at strengthening attack detection capabilities in SDNs, through the addition of predictive analytics capabilities. For this purpose, we build a learning-based anomaly detection service called Learn2Defend, based on functionalities provided by Opendaylight. A potential path to cognition is detailed, by means of a Gaussian Processes driven engine that makes use of traffic characteristics/behavior profiles e.g. smoothness of the frequency of flows traversing a given node. Learn2Defend follows a two-fold approach, with unsupervised learning and prediction mechanisms, all in an on-line dynamic SDN context. The prototype does not target to provide an universally valid predictive analytics framework for security, but rather to offer a tool that supports the integration of cognitive techniques in the SDN security services.",
"editor": [
{
"familyName": "Tantar",
"givenName": "Alexandru-Adrian",
"type": "Person"
},
{
"familyName": "Tantar",
"givenName": "Emilia",
"type": "Person"
},
{
"familyName": "Emmerich",
"givenName": "Michael",
"type": "Person"
},
{
"familyName": "Legrand",
"givenName": "Pierrick",
"type": "Person"
},
{
"familyName": "Alboaie",
"givenName": "Lenuta",
"type": "Person"
},
{
"familyName": "Luchian",
"givenName": "Henri",
"type": "Person"
}
],
"genre": "chapter",
"id": "sg:pub.10.1007/978-3-319-69710-9_5",
"inLanguage": "en",
"isAccessibleForFree": false,
"isPartOf": {
"isbn": [
"978-3-319-69708-6",
"978-3-319-69710-9"
],
"name": "EVOLVE - A Bridge between Probability, Set Oriented Numerics, and Evolutionary Computation VI",
"type": "Book"
},
"keywords": [
"anomaly detection",
"security services",
"anomaly detection service",
"predictive analytics capabilities",
"predictive analytics framework",
"attack detection capabilities",
"SDN context",
"unsupervised learning",
"analytics capabilities",
"detection service",
"prediction mechanism",
"two-fold approach",
"SDN",
"position paper",
"Gaussian process",
"analytic framework",
"detection capability",
"services",
"OpenDaylight",
"cognitive techniques",
"capability",
"security",
"potential paths",
"software",
"network",
"nodes",
"learning",
"detection",
"prototype",
"engine",
"functionality",
"framework",
"integration",
"tool",
"path",
"smoothness",
"technique",
"context",
"e.",
"process",
"use",
"means",
"purpose",
"cognition",
"mechanism",
"addition",
"flow",
"frequency of flows",
"frequency",
"paper",
"approach"
],
"name": "On Using Cognition for Anomaly Detection in SDN",
"pagination": "67-81",
"productId": [
{
"name": "dimensions_id",
"type": "PropertyValue",
"value": [
"pub.1092634258"
]
},
{
"name": "doi",
"type": "PropertyValue",
"value": [
"10.1007/978-3-319-69710-9_5"
]
}
],
"publisher": {
"name": "Springer Nature",
"type": "Organisation"
},
"sameAs": [
"https://doi.org/10.1007/978-3-319-69710-9_5",
"https://app.dimensions.ai/details/publication/pub.1092634258"
],
"sdDataset": "chapters",
"sdDatePublished": "2022-05-20T07:42",
"sdLicense": "https://scigraph.springernature.com/explorer/license/",
"sdPublisher": {
"name": "Springer Nature - SN SciGraph project",
"type": "Organization"
},
"sdSource": "s3://com-springernature-scigraph/baseset/20220519/entities/gbq_results/chapter/chapter_138.jsonl",
"type": "Chapter",
"url": "https://doi.org/10.1007/978-3-319-69710-9_5"
}
]
Download the RDF metadata as: json-ld nt turtle xml License info
JSON-LD is a popular format for linked data which is fully compatible with JSON.
curl -H 'Accept: application/ld+json' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-69710-9_5'
N-Triples is a line-based linked data format ideal for batch operations.
curl -H 'Accept: application/n-triples' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-69710-9_5'
Turtle is a human-readable linked data format.
curl -H 'Accept: text/turtle' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-69710-9_5'
RDF/XML is a standard XML format for linked data.
curl -H 'Accept: application/rdf+xml' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-69710-9_5'
This table displays all metadata directly associated to this object as RDF triples.
161 TRIPLES
23 PREDICATES
77 URIs
69 LITERALS
7 BLANK NODES