Running an IDS Virtual Network Function inside an SDN Bare Metal Commodity Switch

Shie-Yuan Wang; Yi Hsuan Hsieh

doi:10.1109/ICC.2018.8422772

Running an IDS Virtual Network Function inside an SDN Bare Metal Commodity Switch

研究成果: Conference contribution › 同行評審

摘要

In this paper, we design, implement, and evaluate the real performance of running multiple Snort IDS (intrusion detection system) VNFs (virtual network function) inside a bare metal commodity switch. In the past, normally people ran Snort on a stand-alone server and configure switches to direct packets to it for inspection. However, more recently there is a trend to implement and run VNF directly inside a switch for immediate and intelligent processing of packets. Our work of running Snort directly inside a bare metal commodity switch as a VNF is the first work of its kind in the world. In this paper, we present real performance results and important findings from this innovative work.

原文	English
主出版物標題	2018 IEEE International Conference on Communications, ICC 2018 - Proceedings
發行者	Institute of Electrical and Electronics Engineers Inc.
ISBN（列印）	9781538631805
DOIs	https://doi.org/10.1109/ICC.2018.8422772
出版狀態	Published - 27 7月 2018
事件	2018 IEEE International Conference on Communications, ICC 2018 - Kansas City, United States 持續時間: 20 5月 2018 → 24 5月 2018

出版系列

名字	IEEE International Conference on Communications
卷	2018-May
ISSN（列印）	1550-3607

Conference

Conference	2018 IEEE International Conference on Communications, ICC 2018
國家/地區	United States
城市	Kansas City
期間	20/05/18 → 24/05/18

存取文件

10.1109/ICC.2018.8422772

其它文件與鏈接

Link to publication in Scopus

引用此

Wang, S-Y., & Hsieh, Y. H. (2018). Running an IDS Virtual Network Function inside an SDN Bare Metal Commodity Switch. 於 2018 IEEE International Conference on Communications, ICC 2018 - Proceedings 文章 8422772 (IEEE International Conference on Communications; 卷 2018-May). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICC.2018.8422772

@inproceedings{621d7f3564c2463c871a89511aa98bac,

title = "Running an IDS Virtual Network Function inside an SDN Bare Metal Commodity Switch",

abstract = "In this paper, we design, implement, and evaluate the real performance of running multiple Snort IDS (intrusion detection system) VNFs (virtual network function) inside a bare metal commodity switch. In the past, normally people ran Snort on a stand-alone server and configure switches to direct packets to it for inspection. However, more recently there is a trend to implement and run VNF directly inside a switch for immediate and intelligent processing of packets. Our work of running Snort directly inside a bare metal commodity switch as a VNF is the first work of its kind in the world. In this paper, we present real performance results and important findings from this innovative work.",

keywords = "Bare metal commodity switch, Intrusion detection system, Network function virtualization, SDN",

author = "Shie-Yuan Wang and Hsieh, {Yi Hsuan}",

year = "2018",

month = jul,

day = "27",

doi = "10.1109/ICC.2018.8422772",

language = "English",

isbn = "9781538631805",

series = "IEEE International Conference on Communications",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

booktitle = "2018 IEEE International Conference on Communications, ICC 2018 - Proceedings",

address = "United States",

note = "2018 IEEE International Conference on Communications, ICC 2018 ; Conference date: 20-05-2018 Through 24-05-2018",

}

Wang, S-Y & Hsieh, YH 2018, Running an IDS Virtual Network Function inside an SDN Bare Metal Commodity Switch. 於 2018 IEEE International Conference on Communications, ICC 2018 - Proceedings., 8422772, IEEE International Conference on Communications, 卷 2018-May, Institute of Electrical and Electronics Engineers Inc., 2018 IEEE International Conference on Communications, ICC 2018, Kansas City, United States, 20/05/18. https://doi.org/10.1109/ICC.2018.8422772

Running an IDS Virtual Network Function inside an SDN Bare Metal Commodity Switch. / Wang, Shie-Yuan; Hsieh, Yi Hsuan.
2018 IEEE International Conference on Communications, ICC 2018 - Proceedings. Institute of Electrical and Electronics Engineers Inc., 2018. 8422772 (IEEE International Conference on Communications; 卷 2018-May).

研究成果: Conference contribution › 同行評審

TY - GEN

T1 - Running an IDS Virtual Network Function inside an SDN Bare Metal Commodity Switch

AU - Wang, Shie-Yuan

AU - Hsieh, Yi Hsuan

PY - 2018/7/27

Y1 - 2018/7/27

N2 - In this paper, we design, implement, and evaluate the real performance of running multiple Snort IDS (intrusion detection system) VNFs (virtual network function) inside a bare metal commodity switch. In the past, normally people ran Snort on a stand-alone server and configure switches to direct packets to it for inspection. However, more recently there is a trend to implement and run VNF directly inside a switch for immediate and intelligent processing of packets. Our work of running Snort directly inside a bare metal commodity switch as a VNF is the first work of its kind in the world. In this paper, we present real performance results and important findings from this innovative work.

AB - In this paper, we design, implement, and evaluate the real performance of running multiple Snort IDS (intrusion detection system) VNFs (virtual network function) inside a bare metal commodity switch. In the past, normally people ran Snort on a stand-alone server and configure switches to direct packets to it for inspection. However, more recently there is a trend to implement and run VNF directly inside a switch for immediate and intelligent processing of packets. Our work of running Snort directly inside a bare metal commodity switch as a VNF is the first work of its kind in the world. In this paper, we present real performance results and important findings from this innovative work.

KW - Bare metal commodity switch

KW - Intrusion detection system

KW - Network function virtualization

KW - SDN

UR - http://www.scopus.com/inward/record.url?scp=85051413321&partnerID=8YFLogxK

U2 - 10.1109/ICC.2018.8422772

DO - 10.1109/ICC.2018.8422772

M3 - Conference contribution

AN - SCOPUS:85051413321

SN - 9781538631805

T3 - IEEE International Conference on Communications

BT - 2018 IEEE International Conference on Communications, ICC 2018 - Proceedings

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 2018 IEEE International Conference on Communications, ICC 2018

Y2 - 20 May 2018 through 24 May 2018

ER -

Running an IDS Virtual Network Function inside an SDN Bare Metal Commodity Switch

摘要

出版系列

Conference

存取文件

其它文件與鏈接

指紋

引用此