On Using Cognition for Anomaly Detection in SDN View Full Text


Ontology type: schema:Chapter     


Chapter Info

DATE

2017-11-11

AUTHORS

Emilia Tantar , Alexandru-Adrian Tantar , Miroslaw Kantor , Thomas Engel

ABSTRACT

Through this position paper we aim at providing a prototype cognitive security service for anomaly detection in Software Defined Networks (SDNs). We equally look at strengthening attack detection capabilities in SDNs, through the addition of predictive analytics capabilities. For this purpose, we build a learning-based anomaly detection service called Learn2Defend, based on functionalities provided by Opendaylight. A potential path to cognition is detailed, by means of a Gaussian Processes driven engine that makes use of traffic characteristics/behavior profiles e.g. smoothness of the frequency of flows traversing a given node. Learn2Defend follows a two-fold approach, with unsupervised learning and prediction mechanisms, all in an on-line dynamic SDN context. The prototype does not target to provide an universally valid predictive analytics framework for security, but rather to offer a tool that supports the integration of cognitive techniques in the SDN security services. More... »

PAGES

67-81

Book

TITLE

EVOLVE - A Bridge between Probability, Set Oriented Numerics, and Evolutionary Computation VI

ISBN

978-3-319-69708-6
978-3-319-69710-9

Identifiers

URI

http://scigraph.springernature.com/pub.10.1007/978-3-319-69710-9_5

DOI

http://dx.doi.org/10.1007/978-3-319-69710-9_5

DIMENSIONS

https://app.dimensions.ai/details/publication/pub.1092634258


Indexing Status Check whether this publication has been indexed by Scopus and Web Of Science using the SN Indexing Status Tool
Incoming Citations Browse incoming citations for this publication using opencitations.net

JSON-LD is the canonical representation for SciGraph data.

TIP: You can open this SciGraph record using an external JSON-LD service: JSON-LD Playground Google SDTT

[
  {
    "@context": "https://springernature.github.io/scigraph/jsonld/sgcontext.json", 
    "about": [
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/08", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Information and Computing Sciences", 
        "type": "DefinedTerm"
      }, 
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/0801", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Artificial Intelligence and Image Processing", 
        "type": "DefinedTerm"
      }, 
      {
        "id": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/0806", 
        "inDefinedTermSet": "http://purl.org/au-research/vocabulary/anzsrc-for/2008/", 
        "name": "Information Systems", 
        "type": "DefinedTerm"
      }
    ], 
    "author": [
      {
        "affiliation": {
          "alternateName": "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg", 
          "id": "http://www.grid.ac/institutes/grid.16008.3f", 
          "name": [
            "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Tantar", 
        "givenName": "Emilia", 
        "id": "sg:person.014120034333.51", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.014120034333.51"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg", 
          "id": "http://www.grid.ac/institutes/grid.16008.3f", 
          "name": [
            "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Tantar", 
        "givenName": "Alexandru-Adrian", 
        "id": "sg:person.012203126757.71", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.012203126757.71"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg", 
          "id": "http://www.grid.ac/institutes/grid.16008.3f", 
          "name": [
            "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Kantor", 
        "givenName": "Miroslaw", 
        "id": "sg:person.010477475103.76", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.010477475103.76"
        ], 
        "type": "Person"
      }, 
      {
        "affiliation": {
          "alternateName": "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg", 
          "id": "http://www.grid.ac/institutes/grid.16008.3f", 
          "name": [
            "Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg"
          ], 
          "type": "Organization"
        }, 
        "familyName": "Engel", 
        "givenName": "Thomas", 
        "id": "sg:person.014715437773.25", 
        "sameAs": [
          "https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.014715437773.25"
        ], 
        "type": "Person"
      }
    ], 
    "datePublished": "2017-11-11", 
    "datePublishedReg": "2017-11-11", 
    "description": "Through this position paper we aim at providing a prototype cognitive security service for anomaly detection in Software Defined Networks (SDNs). We equally look at strengthening attack detection capabilities in SDNs, through the addition of predictive analytics capabilities. For this purpose, we build a learning-based anomaly detection service called Learn2Defend, based on functionalities provided by Opendaylight. A potential path to cognition is detailed, by means of a Gaussian Processes driven engine that makes use of traffic characteristics/behavior profiles e.g. smoothness of the frequency of flows traversing a given node. Learn2Defend follows a two-fold approach, with unsupervised learning and prediction mechanisms, all in an on-line dynamic SDN context. The prototype does not target to provide an universally valid predictive analytics framework for security, but rather to offer a tool that supports the integration of cognitive techniques in the SDN security services.", 
    "editor": [
      {
        "familyName": "Tantar", 
        "givenName": "Alexandru-Adrian", 
        "type": "Person"
      }, 
      {
        "familyName": "Tantar", 
        "givenName": "Emilia", 
        "type": "Person"
      }, 
      {
        "familyName": "Emmerich", 
        "givenName": "Michael", 
        "type": "Person"
      }, 
      {
        "familyName": "Legrand", 
        "givenName": "Pierrick", 
        "type": "Person"
      }, 
      {
        "familyName": "Alboaie", 
        "givenName": "Lenuta", 
        "type": "Person"
      }, 
      {
        "familyName": "Luchian", 
        "givenName": "Henri", 
        "type": "Person"
      }
    ], 
    "genre": "chapter", 
    "id": "sg:pub.10.1007/978-3-319-69710-9_5", 
    "inLanguage": "en", 
    "isAccessibleForFree": false, 
    "isPartOf": {
      "isbn": [
        "978-3-319-69708-6", 
        "978-3-319-69710-9"
      ], 
      "name": "EVOLVE - A Bridge between Probability, Set Oriented Numerics, and Evolutionary Computation VI", 
      "type": "Book"
    }, 
    "keywords": [
      "anomaly detection", 
      "security services", 
      "anomaly detection service", 
      "predictive analytics capabilities", 
      "predictive analytics framework", 
      "attack detection capabilities", 
      "SDN context", 
      "unsupervised learning", 
      "analytics capabilities", 
      "detection service", 
      "prediction mechanism", 
      "two-fold approach", 
      "SDN", 
      "position paper", 
      "Gaussian process", 
      "analytic framework", 
      "detection capability", 
      "services", 
      "OpenDaylight", 
      "cognitive techniques", 
      "capability", 
      "security", 
      "potential paths", 
      "software", 
      "network", 
      "nodes", 
      "learning", 
      "detection", 
      "prototype", 
      "engine", 
      "functionality", 
      "framework", 
      "integration", 
      "tool", 
      "path", 
      "smoothness", 
      "technique", 
      "context", 
      "e.", 
      "process", 
      "use", 
      "means", 
      "purpose", 
      "cognition", 
      "mechanism", 
      "addition", 
      "flow", 
      "frequency of flows", 
      "frequency", 
      "paper", 
      "approach"
    ], 
    "name": "On Using Cognition for Anomaly Detection in SDN", 
    "pagination": "67-81", 
    "productId": [
      {
        "name": "dimensions_id", 
        "type": "PropertyValue", 
        "value": [
          "pub.1092634258"
        ]
      }, 
      {
        "name": "doi", 
        "type": "PropertyValue", 
        "value": [
          "10.1007/978-3-319-69710-9_5"
        ]
      }
    ], 
    "publisher": {
      "name": "Springer Nature", 
      "type": "Organisation"
    }, 
    "sameAs": [
      "https://doi.org/10.1007/978-3-319-69710-9_5", 
      "https://app.dimensions.ai/details/publication/pub.1092634258"
    ], 
    "sdDataset": "chapters", 
    "sdDatePublished": "2022-05-20T07:42", 
    "sdLicense": "https://scigraph.springernature.com/explorer/license/", 
    "sdPublisher": {
      "name": "Springer Nature - SN SciGraph project", 
      "type": "Organization"
    }, 
    "sdSource": "s3://com-springernature-scigraph/baseset/20220519/entities/gbq_results/chapter/chapter_138.jsonl", 
    "type": "Chapter", 
    "url": "https://doi.org/10.1007/978-3-319-69710-9_5"
  }
]
 

Download the RDF metadata as:  json-ld nt turtle xml License info

HOW TO GET THIS DATA PROGRAMMATICALLY:

JSON-LD is a popular format for linked data which is fully compatible with JSON.

curl -H 'Accept: application/ld+json' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-69710-9_5'

N-Triples is a line-based linked data format ideal for batch operations.

curl -H 'Accept: application/n-triples' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-69710-9_5'

Turtle is a human-readable linked data format.

curl -H 'Accept: text/turtle' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-69710-9_5'

RDF/XML is a standard XML format for linked data.

curl -H 'Accept: application/rdf+xml' 'https://scigraph.springernature.com/pub.10.1007/978-3-319-69710-9_5'


 

This table displays all metadata directly associated to this object as RDF triples.

161 TRIPLES      23 PREDICATES      77 URIs      69 LITERALS      7 BLANK NODES

Subject Predicate Object
1 sg:pub.10.1007/978-3-319-69710-9_5 schema:about anzsrc-for:08
2 anzsrc-for:0801
3 anzsrc-for:0806
4 schema:author N020403108f8641d981fe018137ccd16c
5 schema:datePublished 2017-11-11
6 schema:datePublishedReg 2017-11-11
7 schema:description Through this position paper we aim at providing a prototype cognitive security service for anomaly detection in Software Defined Networks (SDNs). We equally look at strengthening attack detection capabilities in SDNs, through the addition of predictive analytics capabilities. For this purpose, we build a learning-based anomaly detection service called Learn2Defend, based on functionalities provided by Opendaylight. A potential path to cognition is detailed, by means of a Gaussian Processes driven engine that makes use of traffic characteristics/behavior profiles e.g. smoothness of the frequency of flows traversing a given node. Learn2Defend follows a two-fold approach, with unsupervised learning and prediction mechanisms, all in an on-line dynamic SDN context. The prototype does not target to provide an universally valid predictive analytics framework for security, but rather to offer a tool that supports the integration of cognitive techniques in the SDN security services.
8 schema:editor Nccdb9c537fbf49289da8047be673595d
9 schema:genre chapter
10 schema:inLanguage en
11 schema:isAccessibleForFree false
12 schema:isPartOf N4477409a3236407f836a3e029b9c6574
13 schema:keywords Gaussian process
14 OpenDaylight
15 SDN
16 SDN context
17 addition
18 analytic framework
19 analytics capabilities
20 anomaly detection
21 anomaly detection service
22 approach
23 attack detection capabilities
24 capability
25 cognition
26 cognitive techniques
27 context
28 detection
29 detection capability
30 detection service
31 e.
32 engine
33 flow
34 framework
35 frequency
36 frequency of flows
37 functionality
38 integration
39 learning
40 means
41 mechanism
42 network
43 nodes
44 paper
45 path
46 position paper
47 potential paths
48 prediction mechanism
49 predictive analytics capabilities
50 predictive analytics framework
51 process
52 prototype
53 purpose
54 security
55 security services
56 services
57 smoothness
58 software
59 technique
60 tool
61 two-fold approach
62 unsupervised learning
63 use
64 schema:name On Using Cognition for Anomaly Detection in SDN
65 schema:pagination 67-81
66 schema:productId Ne6e2383cb24c476288592299280cccb7
67 Nec95b6dc3e1e4b8caa6717ddc3312e29
68 schema:publisher N61c894c0f45f43a2b3901de6543593cf
69 schema:sameAs https://app.dimensions.ai/details/publication/pub.1092634258
70 https://doi.org/10.1007/978-3-319-69710-9_5
71 schema:sdDatePublished 2022-05-20T07:42
72 schema:sdLicense https://scigraph.springernature.com/explorer/license/
73 schema:sdPublisher N73f9e94a68754b52ac5562ade0150669
74 schema:url https://doi.org/10.1007/978-3-319-69710-9_5
75 sgo:license sg:explorer/license/
76 sgo:sdDataset chapters
77 rdf:type schema:Chapter
78 N020403108f8641d981fe018137ccd16c rdf:first sg:person.014120034333.51
79 rdf:rest N1f200e1494f14cb0b4e4bae5ee7338c9
80 N084809e158824533bff19dc780b5e6ca rdf:first Neeafc6467b6e4a0c94aaa81f01872886
81 rdf:rest Nfa54d06bafa74f7e873a92bc5ccad6fa
82 N1f200e1494f14cb0b4e4bae5ee7338c9 rdf:first sg:person.012203126757.71
83 rdf:rest Ne25310acebb446c28d0600d9a5988dae
84 N3449fdeb7aa149acae7292a8bf2e7573 schema:familyName Emmerich
85 schema:givenName Michael
86 rdf:type schema:Person
87 N4477409a3236407f836a3e029b9c6574 schema:isbn 978-3-319-69708-6
88 978-3-319-69710-9
89 schema:name EVOLVE - A Bridge between Probability, Set Oriented Numerics, and Evolutionary Computation VI
90 rdf:type schema:Book
91 N61c894c0f45f43a2b3901de6543593cf schema:name Springer Nature
92 rdf:type schema:Organisation
93 N73f9e94a68754b52ac5562ade0150669 schema:name Springer Nature - SN SciGraph project
94 rdf:type schema:Organization
95 N89737c8dc567418681c1713bd3a7bee5 schema:familyName Tantar
96 schema:givenName Alexandru-Adrian
97 rdf:type schema:Person
98 N93c4c5d35100439b80394c604a3a1446 schema:familyName Tantar
99 schema:givenName Emilia
100 rdf:type schema:Person
101 N98d3cee07d1942d9822692104c180570 rdf:first N93c4c5d35100439b80394c604a3a1446
102 rdf:rest Ne5a585eec4434f88a5dcf35fa7487b08
103 Naea5303af6c44222bd95433e852598e9 rdf:first Nf7ae7c408399455e84e0aef13331bb3c
104 rdf:rest N084809e158824533bff19dc780b5e6ca
105 Nb34c2bc30bb040958bd273342482c93f schema:familyName Luchian
106 schema:givenName Henri
107 rdf:type schema:Person
108 Nc4293352201a4ca688a5b59bbaa12932 rdf:first sg:person.014715437773.25
109 rdf:rest rdf:nil
110 Nccdb9c537fbf49289da8047be673595d rdf:first N89737c8dc567418681c1713bd3a7bee5
111 rdf:rest N98d3cee07d1942d9822692104c180570
112 Ne25310acebb446c28d0600d9a5988dae rdf:first sg:person.010477475103.76
113 rdf:rest Nc4293352201a4ca688a5b59bbaa12932
114 Ne5a585eec4434f88a5dcf35fa7487b08 rdf:first N3449fdeb7aa149acae7292a8bf2e7573
115 rdf:rest Naea5303af6c44222bd95433e852598e9
116 Ne6e2383cb24c476288592299280cccb7 schema:name dimensions_id
117 schema:value pub.1092634258
118 rdf:type schema:PropertyValue
119 Nec95b6dc3e1e4b8caa6717ddc3312e29 schema:name doi
120 schema:value 10.1007/978-3-319-69710-9_5
121 rdf:type schema:PropertyValue
122 Neeafc6467b6e4a0c94aaa81f01872886 schema:familyName Alboaie
123 schema:givenName Lenuta
124 rdf:type schema:Person
125 Nf7ae7c408399455e84e0aef13331bb3c schema:familyName Legrand
126 schema:givenName Pierrick
127 rdf:type schema:Person
128 Nfa54d06bafa74f7e873a92bc5ccad6fa rdf:first Nb34c2bc30bb040958bd273342482c93f
129 rdf:rest rdf:nil
130 anzsrc-for:08 schema:inDefinedTermSet anzsrc-for:
131 schema:name Information and Computing Sciences
132 rdf:type schema:DefinedTerm
133 anzsrc-for:0801 schema:inDefinedTermSet anzsrc-for:
134 schema:name Artificial Intelligence and Image Processing
135 rdf:type schema:DefinedTerm
136 anzsrc-for:0806 schema:inDefinedTermSet anzsrc-for:
137 schema:name Information Systems
138 rdf:type schema:DefinedTerm
139 sg:person.010477475103.76 schema:affiliation grid-institutes:grid.16008.3f
140 schema:familyName Kantor
141 schema:givenName Miroslaw
142 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.010477475103.76
143 rdf:type schema:Person
144 sg:person.012203126757.71 schema:affiliation grid-institutes:grid.16008.3f
145 schema:familyName Tantar
146 schema:givenName Alexandru-Adrian
147 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.012203126757.71
148 rdf:type schema:Person
149 sg:person.014120034333.51 schema:affiliation grid-institutes:grid.16008.3f
150 schema:familyName Tantar
151 schema:givenName Emilia
152 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.014120034333.51
153 rdf:type schema:Person
154 sg:person.014715437773.25 schema:affiliation grid-institutes:grid.16008.3f
155 schema:familyName Engel
156 schema:givenName Thomas
157 schema:sameAs https://app.dimensions.ai/discover/publication?and_facet_researcher=ur.014715437773.25
158 rdf:type schema:Person
159 grid-institutes:grid.16008.3f schema:alternateName Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg
160 schema:name Interdisciplinary Centre for Security, Reliability and Trust, University of Luxembourg, 4 Rue Alphonse Weicker, 2721, Luxembourg, Luxembourg
161 rdf:type schema:Organization
 




Preview window. Press ESC to close (or click here)


...