Keynote speech information

Title: Data Plane Programming and Acceleration for Enhancing Network Monitoring and Security
Abstract: With the advent of Software-Defined Networking, data plane technologies have quickly evolved and offer new capabilities to offload processing within the network or in its close vicinity. Hence, network monitoring and security can benefit from the latter to perform operations such as extracting particular data, matching signatures, processing statistics, detecting anomalies and filtering or rerouting packets accordingly. Although the main advantage is to gain in performance, they suffer from intrinsic limitations in terms of programmability and execution models. In this talk, we will first review existing propositions that leverage data-plane acceleration for efficient network (security) monitoring. Therefore, we will summarize last proposals to specify monitoring programs or queries to be deployed in-network. This requests both the proper level of abstraction to be executed on network elements and orchestration to be executed in a distributed manner. We will also show how these new technologies can particularity speed-up security functions. The talk will also put the light on challenges and future directions in this domain.

Bio: Jérome François is a research scientist at Inria. He received his Ph.D. rom the University of Lorraine, France, in December 2009. He is now  the deputy leader of the RESIST research group. Relying on data analytics and the convergence between network and system, this group aims to make elastic and resilient networked systems thanks to powerful intelligent methods to analyze and orchestrate resources to enhance security and scalability. He is also research fellow at the Interdisciplinary Center for Security Reliability and Trust, SnT, at the University of Luxembourg and  the leader of a joint team between Inria and SnT on network softwarization. His research area is the network management and cyber-security. He designed methods for monitoring and analyzing large scale networks in various scenarios, in particular traffic flow analysis, botnet detection, semantic phishing prevention techniques, large scale security analytics, encrypted traffic analysis, IoT security and SDN-based security.

Detailed workshop program

Tuesday, Nov 27, 2018

Keynote speech (14:00-14:30)

Invited speaker: Jérome François – INRIA

Title: “Data Plane Programming and Acceleration for Enhancing Network Monitoring and Security” (20 minutes presentation + 10 minutes for questions)

Session 1 (14:30-15:30)

  • Joakim Flathagen; Terje Mikal Olsen Mjelde; Ole Ingar Bentstuen – “A combined Network Access Control and QoS scheme for Software Defined Networks” (15 minutes presentation + 5 minutes for questions)
  • Seungwon Woo; Seungsoo Lee; Jinwoo Kim; Seungwon Shin – “RE-CHECKER: Towards Secure RESTful Service in Software-Defined Networking” (15 minutes presentation + 5 minutes for questions)
  • Jacob Steadman; Sandra Scott-Hayward – “DNSxD: Detecting Data Exfiltration Over DNS” (15 minutes presentation + 5 minutes for questions)

Break (15:30-16:00)

Session 2 (16:00-17:00)

  • Michael Steinke; Iris Adam; Wolfgang F. Hommel – “Multi-Tenancy-Capable Correlation of Security Events in 5G Networks” (15 minutes presentation + 5 minutes for questions)
  • Mikhail Zolotukhin; Timo Hämäläinen – “On Artificial Intelligent Malware Tolerant Networking for IoT” (15 minutes presentation + 5 minutes for questions)
  • Mehrdad Hajizadeh; Trung V. Phan; Thomas Bauschert – “Probability Analysis of Successful Cyber Attacks in SDN-based Networks” (15 minutes presentation + 5 minutes for questions)

Round-table and questions (17:00-17:30)