Using cyber threat intelligence in SDN security Yazilim Tanimli Aǧlarin Güvenliǧinde Siber Tehdit İstihbarati Kullanimi


Yürekten Ö., Demirci M.

2nd International Conference on Computer Science and Engineering, UBMK 2017, Antalya, Turkey, 5 - 08 October 2017, pp.377-382 identifier identifier

  • Publication Type: Conference Paper / Full Text
  • Volume:
  • Doi Number: 10.1109/ubmk.2017.8093415
  • City: Antalya
  • Country: Turkey
  • Page Numbers: pp.377-382
  • Keywords: software defined networks, cyber threat intelligence, SDN, CTI, network security
  • Middle East Technical University Affiliated: No

Abstract

As the number and variety of cyber threats increase, it becomes more critical to share intelligence information in a fast and efficient manner. However, current cyber threat intelligence data do not contain sufficient information about how to specify countermeasures or how institutions should apply countermeasures automatically on their networks. A flexible and agile network architecture is required in order to determine and deploy countermeasures quickly. Software-defined networks facilitate timely application of cyber security measures thanks to their programmability. In this work, we propose a novel model for producing software-defined networking-based solutions against cyber threats and configuring networks automatically using risk analysis. We have developed a prototype implementation of the proposed model and demonstrated the applicability of the model. Furthermore, we have identified and presented future research directions in this area.