Intrusion detection and prevention using software-defined networking A cyber security seminar
Implementing an intrusion detection and prevention system using Software-Defined Networking: Defending against ARP spoofing attacks and Blacklisted MAC Addresses
This work focuses on infiltration methods, such as Address Resolution Protocol (ARP) spoofing. We developed a Software-Defined Networking (SDN)-based Intrusion Detection and Prevention System (IDPS). Bespoke software was written to conduct the attack tests and customise the IDPS, this was coupled to a specifically developed library to validate user input. Improvements were made to SDN in the areas of attack detection, firewall, intrusion prevention, packet dropping and shorter timeouts. Our extensive experimental results show that the developed solution quickly responds to intrusion attempts - measured detection and mitigation times are in the order of a few seconds.
Meeting ID: 950 3875 1132, Passcode: 245142
About the speaker
Tom Girdler obtained a BSc (Hons) in Computer and Network Engineering from Sheffield Hallam University in 2003 and an MSc in Cyber Security from the University of York in 2019. His research focuses on using Software-Defined Networking to develop Intrusion Detection and Prevention Systems.