Dynamic Network Security Control Using Software Defined Networking

Abstract

This thesis develops and implements a process to rapidly respond to host level security events using a host agent, Software Defined Networking and OpenFlow updates, role based flow classes, and Advanced Messaging Queuing Protocol to automatically update configuration of switching devices and block malicious traffic. Results show flow table updates are made for all tested levels in less than 5.27 milliseconds and event completion time increased with treatment level as expected. As the number of events increases from 1,000 to 50,000, the design scales logarithmically caused mainly by message delivery time. Event processing throughput is limited primarily by the message rate of the agent (40 msg./sec.). Additionally, the maximum effective consume rate for the controller indicates this design is capable of supporting up to 380 hosts at one msg./sec. Finally, every event triggered is successfully processed for both experiments resulting in a 100 percent event success rate.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Mar 24, 2016
Accession Number
AD1039959

Entities

People

  • Michael C. Todd

Organizations

  • Air Force Institute of Technology

Tags

Communities of Interest

  • C4I
  • Cyber
  • Energy and Power Technologies

DTIC Thesaurus Topics

  • Air Force
  • Authentication
  • Cloud Computing
  • Computer Network Security
  • Computer Networks
  • Computer Programming
  • Computers
  • Data Transmission
  • Detection
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Network Protocols
  • Operating Systems
  • Software Defined Networks
  • Transport Protocols
  • United States Government

Fields of Study

  • Computer science

Readers

  • Computer Networking
  • Mathematical Modeling and Probability Theory.

Technology Areas

  • Cyber