Jargalsaikhan Narantuya

Gwangju Institute of Science and Technology, Informations and Communications, Graduate Student

Followers

Following

Public Views

Address: Republic of Korea

less

James Elkins

School of the Art Institute of Chicago

Maurizio Forte

Duke University

J. H. Chajes

University of Haifa

Armando Marques-Guedes

UNL - New University of Lisbon

Paul Tobin

Dublin Institute of Technology

Roshan Chitrakar

Nepal College of Information Technology

Sam Koohi-Kamali

University of Malaya, Malaysia

Iain Staffell

Imperial College London

Jaydip Sen

Praxis Business School

Bogdan Gabrys

University of Technology Sydney

Interests

Uploads

Papers by Jargalsaikhan Narantuya

Scalable network intrusion detection on virtual SDN environment

2014 IEEE 3rd International Conference on Cloud Networking (CloudNet), 2014

Distributed Sampling Algorithm for Intrusion Detection in SDN Environment

As the Internet has been rapidly developed last few years, amount of malicious traffic also incre... more As the Internet has been rapidly developed last few years, amount of malicious traffic also increased enormously. For detecting malicious traffic in the network, Intrusion detection system (IDS) is widely used to inspect data traffic. However, existing IDS lacks scalability on today's networking system, since direct inspection of a high speed data traffic is beyond the processing capacity of inspecting data traffic. Also a various types of distributed malicious traffic pattern becomes a reason of avoiding the detection. In this work, we propose a distributed sampling technique in software-defined networking (SDN) environment that fully utilizes inspection capability for all malicious traffic, while aggregate volume of the sampled traffic is kept below the inspection capacity of IDS. We find appropriate sampling rates for all distributed switches by solving non-linear optimization problem, and after each observation, the system re-adjusts its sampling strategy depend on current distribution of the malicious traffic. Through simulations, we show the proposed approach significantly increases a performance of the IDS in a large-scaled network. c ⃝2015 Jargalsaikhan Narantuya ALL RIGHTS RESERVED -i -"The good life is one inspired by love and guided by knowledge." -Bertrand Russell-Fist of all, I would like to express the deepest appreciation to my honorable advisor, Professor Hyuk Lim, who has the attitude and the substance of a genius: he continually and convincingly conveyed a spirit of adventure in regard to research and scholarship, and excitement in regard to teaching. Without his guidance and persistent help this work would not have been possible. I also respectfully thank my committee members, Professor Kiseon Kim and Professor Jongwon Kim, for their helpful suggestions and comments that enabled me to write a better thesis. Thanks also go to the National Institute for International Education Development (NIIED) through Korean Government Scholarship Program (KGSP) for undergraduate study and Wireless Communication and Networking Laboratory through several of its project that has provided generous financial support for master study. Without this, my study in South Korea would not have been possible.

Download