Intelligent Threat-Aware Response System in Software-Defined Networks

Author

Kunal Ketan Goswami, San Jose State UniversityFollow

Publication Date

Spring 2017

Degree Type

Thesis

Degree Name

Master of Science (MS)

Department

Computer Engineering

Advisor

Younghee Park

Keywords

Intelligent threat response, Network intrusion detection, Reinforcement learning, Software-defined networks

Subject Areas

Computer engineering

Abstract

Software-defined networks decouple the control plane from the data plane, enabling researchers to evaluate protocols and network configurations through the centralized point of control, the controller. They provide easy management and automation, scalability, and flexibility in the traditional computer network. In spite of these advantages, software-defined networks fall prey to various denial-of-service attacks specific to network protocols and applications despite their simplicity. There is a need to implement intelligence in the controller as a countermeasure for not only the various types of denial-of-service attacks but also the increasing sophistication involved in them. In this paper, an intelligent threat-aware response system is proposed for defending against any attack by using reinforcement learning. Reinforcement learning can acquire intelligence for detection and reactive actions through experience with various attacks. This experience is obtained from interactions with the computer network through the controller. With the combination of reinforcement learning and the software-defined networking controller, the goal of the autonomous threat response system can be achieved.

Recommended Citation

Goswami, Kunal Ketan, "Intelligent Threat-Aware Response System in Software-Defined Networks" (2017). Master's Theses. 4801.
DOI: https://doi.org/10.31979/etd.8x8q-n9hh
https://scholarworks.sjsu.edu/etd_theses/4801