P4ID : P4 Enhanced Intrusion Detection

Lewis, Benjamin and Broadbent, Matthew and Race, Nicholas (2020) P4ID : P4 Enhanced Intrusion Detection. In: 2019 IEEE Conference on Network Function Virtualization and Software Defined Networks (NFV-SDN) :. IEEE, pp. 1-4. ISBN 9781728145457

[thumbnail of P4_IDS_Paper]
Text (P4_IDS_Paper)
P4_IDS_Paper.pdf - Accepted Version
Available under License Creative Commons Attribution-NonCommercial.

Download (128kB)

Abstract

The growth in scale and capacity of networks in recent years leads to challenges of positioning and scalability of Intrusion Detection Systems (IDS). With the flexibility afforded by programmable dataplanes, it is now possible to perform a new level of intrusion detection in switches themselves. We present P4ID, combining a rule parser, stateless and stateful packet processing using P4, and evaluate it using publicly available datasets. We show that using this technique, we can achieve a significant reduction in traffic being processed by an IDS.

Item Type:
Contribution in Book/Report/Proceedings
Additional Information:
©2019 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.
ID Code:
140971
Deposited By:
Deposited On:
03 Feb 2020 14:50
Refereed?:
Yes
Published?:
Published
Last Modified:
26 Nov 2024 02:30