Publication/Talk

2020

GapFinder: Finding Inconsistency of Security Information from Unstructured Text

Hyeonseong Jo, Jinwoo Kim, Phillip Porras, Vinod Yegneswaran, Seungwon Shin

IEEE Transactions on Information Forensics and Security, 2020

BASTION: A Security Enforcement Network Stack for Container Networks 

Jaehyun Nam, Seungsoo Lee, Hyunmin Seo, Phil Porras, Vinod Yegneswaran, Seungwon Shin

USENIX Annual Technical Conference, 2020

(Poster) AE-NIDS : Automated Evolving SDN-based Network Intrusion Detection System

Suyeol Lee, Seungwon Shin

EuroSys, 2020

A Comprehensive Security Assessment Framework for Software-Defined Networks

Seungsoo Lee, Jinwoo Kim, Seungwon Woo, Changhoon Yoon, Sandra Scott-Hayward, Vinod Yegneswaran, Phillip Porras, Seungwon Shin

Computers & Security, 2020

Paper

AudiSDN: Automated Detection of Network Policy Inconsistencies in Software-Defined Networks

Seungsoo Lee, Seungwon Woo, Jinwoo Kim, Vinod Yegneswaran, Phillip Porras, Seungwon Shin

IEEE Conference on Computer Communications, 2020

Paper

2019

Automated permission model generation for securing SDN control-plane 

Heedo Kang, Vinod Yegneswaran, Shalini Ghosh, Phillip Porras, Seungwon Shin

IEEE Transactions on Information Forensics and Security, 2019

Paper

(Poster) TCLP: Enforcing Least Privileges to Prevent Containers from Kernel Vulnerabilities

Suyeol Lee, Junsik Seo, Jaehyun Nam, Seungwon Shin

ACM Conference on Computer and Communications Security, 2019

Poster

SODA: A Software-defined Security Framework for IoT Environments

Yeonkeun Kim, Jaehyun Nam, Taejune Park, Sandra Scott-Hayward, Seungwon Shin

Elsevier International Journal of Computer and Telecommunications Networking, 2019

Paper

Rethinking Network Policy Coordination: A Database Perspective

Anduo Wang, Seungwon Shin, Eduard Dragut

The 3rd Asia-Pacific Workshop on Networking, co-located with SIGCOMM

Paper

MC-SDN: Supporting Mixed-Criticality Real-Time Communication Using Software-Defined Networking

Kilho Lee, Minsu Kim, Taejune Park, Hoonsung Chwa, Jinkyub Lee, Seungwon Shin, Insik Shin

IEEE Internet of Things Journal

Paper

Operator-defined Reconfigurable Network OS for Software-Defined Networks

Jaehyun Nam, Hyeonseong Jo, Yeonkeun Kim, Phillip Porras, Vinod Yegneswaran, Seungwon Shin 

IEEE / ACM Transaction on Networking

Paper

DPX: Data-Plane eXtensions for SDN Security Service Instantiation

Taejune Park, Yeonkeun Kim, Vinod Yegneswaran, Phillip Porras, Zhaoyan Xu, Kyungsoo Park, Seungwon Shin

The 16th Conference on Detection of Intrusions and Malware & Vulnerability Assessment , 2019

Paper

Darknet. How will the darknet of future be like?

Seungwon Shin

INTERPOL World, 2019

Astraea: Towards an Effective and Usable Application Permission System for SDN

Heedo Kang, Changhoon Yoon, Seungwon Shin

Elsevier International Journal of Computer and Telecommunications Networking

Paper

Doppelgängers on the Dark Web: A Large-scale Assessment on Phishing Hidden Web Services

Changhoon Yoon, Kwanwoo Kim, Yongdae Kim, Seungwon Shin, Sooel Son

The Web conference, 2019

Paper

Cybercriminal Minds: An investigative study of cryptocurrency abuses in the Dark Web

Seunghyeon Lee, Changhoon Yoon, Heedo Kang, Yeonkeun Kim, Yongdae Kim, Dongsu Han, Sooel Son, Seungwon Shin

Network & Distributed System Security Symposium, 2019

Paper

2018

(Fast abstract) Towards a security-enhanced cloud platform

Junsik Seo, Jaehyun Nam, Seungwon Shin

The 23rd IEEE Pacific Rim International Symposium on Dependable Computing, Taipei, Taiwan, Dec., 2018

Paper

RE-CHECKER: Towards Secure RESTful Service in Software-Defined Networking

Seungwon Woo, Seungsoo Lee, Jinwoo Kim, Seungwon Shin

Fifth International Workshop on Security in NFV-SDN (SN-2018), Verona, Italy, Nov., 2018

Paper

Bypass rewiring and extreme robustness of Eulerian networks

Junsang Park, Seungwon Shin, Sangkeun Han

Elsevier Physica A

Paper

(Poster) Knowledge Seeking on The Shadow Brokers

Seung Ho Na, Kwanwoo Kim, Seungwon Shin

ACM Conference on Computer and Communications Security, Toronto, Canada, Oct., 2018

Poster

Toward Semantic Assessment of Vulnerability Severity: A Text Mining Approach

Yongjae Lee and Seungwon Shin

CIKM Workshop on EntitY REtrieval, Lingotto, Turin, Italy, Oct., 2018

Paper

MC-SDN: Supporting Mixed-Criticality Scheduling on Switched-Ethernet Using Software-Defined Networking

Kilho Lee, Taejune Park, Minsu Kim, Hoon Sung Chwa, Jinkyu Lee, Seungwon Shin, Insik Shin

IEEE Real-Time Systems Symposium, Nashville, TN, USA, Dec., 2018

Paper

INDAGO: A New Framework For Detecting Malicious SDN Applications

Chanhee Lee, Changhoon Yoon, Seungwon Shin, Sang Kil Cha

IEEE International Conference on Network Protocols, Cambridge, UK, Sep., 2018

Paper

(Briefing) The Finest Penetration Testing Framework for Software-Defined Networks

Seungsoo Lee, Jinwoo Kim, Seungwon Woo, Seungwon Shin

Blackhat, Las Vegas, NV, USA, Aug., 2018

Link

(ARSENAL) DELTA: SDN Security Evaluation Framework

Jinwoo Kim, Seungsoo Lee, Seungwon Woo, Seungwon Shin

Blackhat, Las Vegas, NV, USA, Aug., 2018

Link

CloudRand: Building Heterogeneous and Moving-target Network Interfaces

Seungwon Shin, Zhaoyan Xu, Yeonkeun Kim, Guofei Gu

The 27th International Conference on Computer Communications and Networks, Hangzhou, China, July, 2018

Paper

AEGIS: An Automated Permission Generation and Verification System for SDN

Heedo Kang, Seungwon Shin, Vinod Yegneswaran, Shalini Ghosh, Phillip Porras

ACM SIGCOMM Workshop on Security in Softwarized Networks: Prospects and Challenges, Budapest, Hungary, Aug., 2018

Paper

HEX Switch: Hardware-assisted security extensions of OpenFlow

Taejune Park, Zhaoyan Xu, Seungwon Shin

ACM SIGCOMM Workshop on Security in Softwarized Networks: Prospects and Challenges, Budapest, Hungary, Aug., 2018

Paper

Who is knocking on Telnet Port: A Large-Scale Empirical Study of Network Scanning

Hwanjo Heo, Seungwon Shin

ACM ASIA Conference on Information, Computer and Communications Security, Songdo, Korea, June, 2018

Paper

Probius: Automated Approach for VNF and Service Chain Analysis in Software-Defined NFV

Jaehyun Nam, Junsik Seo, Seungwon Shin

ACM Symposium on SDN Research,  Los Angeles, California, USA, Mar., 2018

Paper

NOSArmor: Building a Secure Network Operating System

Hyeonseong Jo, Jaehyun Nam, Seungwon Shin

Security and Communication Networks, 2018 [Journal]

Paper

Duo: Software Defined Intrusion Tolerant System using Dual Cluster

Yongjae Lee, Seunghyeon Lee, Hyunmin Seo, Changhoon Yoon, Seungwon Shin and Hyunsoo Yoon

Security and Communication Networks, 2018 [Journal]

Paper

Barista: An Event-centric NOS Composition Framework for Software-Defined Networks

Jaehyun Nam, Hyeonseong Jo, Yeonkeun Kim, Phillip Porras, Vinod Yegneswaran, Seungwon Shin

IEEE Conference on Computer Communications, Honolulu, HI, USA, Apr., 2018

Paper

Attacking SDN Infrastructure

Changhoon Yoon

IT DEFENSE, Munich, Germany, Jan., 2018

Link

2017

A Security-Mode for Carrier-Grade SDN Controllers

Changhoon Yoon, Seungwon Shin, Phillip Porras, Vinod Yegneswaran, Heedo Kang, Martin Fong, Brian O’Connor, Thomas Vachuska

Annual Computer Security Application Conference, Orlando, Florida, USA, Dec., 2017

Paper

Flow Wars: Systemizing the Attack Surface and Defenses in Software-Defined Networks

Changhoon Yoon, Seungsoo Lee, Heedo Kang, Taejune Park, Seungwon Shin, Vinod Yegneswaran, Phillip Porras, Guofei Gu

IEEE/ACM Transaction on Networking [Journal] 2017

Paper

(Poster) Bridging the Architectural Gap between NOS Design Principles in Software-Defined Networks

Jaehyun Nam, Hyeonseong Jo, Yeonkeun Kim, Phillip Porras, Vinod Yegneswaran, Seungwon Shin

ACM Symposium on Cloud Computing, Santa Clara, CA, USA, September, 2017

Poster

(ARSENAL) DELTA: SDN Security Evaluation Framework

Jinwoo Kim, Seungsoo Lee, Seungwon Shin

BlackHat, Las Vegas, NV, USA, July, 2017

Link

Mobility of Everything (MoE): An Integrated and Distributed Mobility Management

Sangyup Han, Jaehyun Park, Haeun Kim, Jaehee Ha, Seungwon Shin, Sungwon Kang, Myungchul Kim

IEEE International Conference on Computer Communications and Networks (to appear), Vancouver, Canada, August, 2017

Paper

(Fast abstract) Software-Defined HoneyNet: Towards Mitigating Link Flooding Attacks

Jinwoo Kim, Seungwon Shin

IEEE/IFIP International Conference on Dependable Systems and Networks, Denver, CO, USA, June, 2017

Paper

Athena: A Framework for Scalable Anomaly Detection in  Software-Defined Networks

Seunghyeon Lee, Jinwoo Kim, Seungwon Shin, Phillip Porras, Vinod Yegneswaran

IEEE/IFIP International Conference on Dependable Systems and Networks, Denver, CO, USA, June, 2017

Paper

DELTA: A Security Assessment Framework for Software-Defined Networks

Seungsoo Lee, Changhoon Yoon, Chanhee Lee, Seungwon Shin, Vinod Yegneswaran, Phillip Porras

Network & Distributed System Security Symposium, San Diego, CA, USA, February, 201

Paper

A Collaborative Approach on Host and Network Level Android Malware Detection

Chanwoo Bae, Seungwon Shin

Security and Communication Networks, 2017 [Journal]

Paper

2016

Enhancing Network Security through Software-Defined Networking (SDN)

Seungwon Shin, Lei Xu, Sungmin Hong, Guofei Gu

IEEE International Conference on Computer Communication and Networks, Waikoloa, HI, USA, Aug., 2016

Paper

(Briefing) Attacking SDN Infrastructure: Are We Ready for the Next-Gen Networking?

Changhoon Yoon, Seungsoo Lee

Blackhat, Las Vegas, NV, USA, Aug., 2016

Slide
Video

(Poster) Barista: A Highly Composable NOS Brewing Framework for Software-Defined Networks

Jaehyun Nam, Hyeonseong Jo, Yeonkeun Kim, Seungwon Shin, Phillip Porras, Vinod Yegneswaran

USENIX Annual Technical Conference, Denver, CO, USA, June, 2016

Poster

Security Mode ONOS

Changhoon Yoon

Open Networking Summit, Santa Clara, CA, USA, Mar., 2016

A Penetration Testing Framework for Software-Defined Networks

Seungwon Shin

Open Networking Foundation (Member Workday), Santa Clara, CA, USA, Mar., 2016

QoSE:Quality of SEcurity (A network security module using a distributed NFV)

Taejune Park, Yeonkeun Kim, Jaehyun Park, Hyunmin Suh, Byeongdo Hong, Seungwon Shin

IEEE International Conference on Communications,  Kuala Lumpur, Malaysia, May, 2016

Paper

Just-in-time WLANs: On-demand Interference-managed WLAN Infrastructures

Kimin Lee, Yeonkeun Kim, Seokhyun Kim, Jinwoo Shin, Seungwon Shin, Song Chong

IEEE Conference on Computer Communications, San Francisco, CA, USA, Apr., 2016

Paper

SHIELD: An Automated Framework for Static Analysis of SDN Applications

Chanhee Lee, Seungwon Shin

ACM International Workshop on Security in Software Defined Networks & Network Function Virtualization, New Orleans, LA, USA, Mar., 2016

Paper

UNISAE: A union of security actions for software switches

Taejune Park, Yeonkeun Kim, Seungwon Shin

ACM International Workshop on Security in Software Defined Networks & Network Function Virtualization, New Orleans, LA, USA, Mar., 2016

Paper

The smaller, the shrewder: a simple malicious application can kill an entire SDN environment

Seungsoo Lee, Changhoon Yoon and Seungwon Shin

ACM International Workshop on Security in Software Defined Networks & Network Function Virtualization, New Orleans, LA, USA, Mar., 2016

Paper

2015

Vulnerabilities of Network OS and Mitigation with State-based Permission System

Jiseong Noh, Seunghyeon Lee, Jaehyun Park, Seungwon Shin, Brent Byunghoon Kang

Security and Communication Networks  [Journal], 2015

Paper

SPIRIT: A Framework for Profiling SDN

Heedo Kang, Seungsoo Lee, Chanhee Lee, Changhoon Yoon and Seungwon Shin

IEEE ICNP-CoolSDN, San Francisco, CA, USA, Nov., 2015

Paper

(4-page extended abstract) A Collaborative Approach on Behaivor-Based Android Malware Detection

Chanwoo Bae, Jesung Jung, Jaehyun Nam and Seungwon Shin

SECURECOMM, Dallas, TX, USA, Oct., 2015

Paper

Security vulnerabilities in open-source SDN controllers

Changhoon Yoon

Open Networking Foundation (Member Workday), Aug., 2015

A First Step Towards Network Security Virtualization: From Concept To Prototype

Seungwon Shin, Haopei Wang and Guofei Gu

IEEE Transactions on Information Forensics and Security, Oct., 2015  [Journal]

Paper

Enabling Security Functions with SDN: A Feasibility Study

Changhoon Yoon, Taejune Park, Seungsoo Lee, Heedo Kang, Seungwon Shin and Zonghua Zhang

Elsevier International Journal of Computer and Telecommunications Networking [Journal], 2015

Paper

(Demo) A Playground for Software-defined Networking Security

Seunghyeon Lee, Chanhee Lee, Hyeonseong Jo, Jinwoo Kim, Seungsoo Lee, Jaehyun Nam, Taejune Park, Changhoon Yoon, Yeonkeun Kim, Heedo Kang, and Seungwon Shin

ACM SIGCOMM Symposium On SDN Research, Santa Clara, CA, USA, June, 2015

Abstract

SDN Security Research Overview

Seungwon Shin

Open Networking Foundation (Member Work Day), Santa Clara, CA, USA, Feb., 2015

Selected up to 2014

 

  • (CCS) Seungwon Shin, Yongjoo Song, Taekyung Lee, Sangho Lee, Jaewoong Chung, Phillip Porras, Vinod Yegneswaran, Jisung Noh and Brent Byunghoon Kang, “Rosemary: A Robust, Secure, and High-performance Network Operating System”, ACM Conference on Computer and Communications Security, Scottsdale, Arizona, USA, Nov., 2014 [paper]
  • Taejune Park, Seungsoo Lee, Seungwon Shin, “A Reflectornet Based on Software Defined Network”, The Journal of Korea Information and Communications Society, 2014 (Korean) [paper]
  • Heedo Kang, Changhoon Yoon, Seungwon Shin “A Study on the trend of network error prevention and detection system using SDN”, The Korean Institute of Communications and Information Sciences , General Conference ,Fall, 2014 (Korean) [paper]
  • (RAID) Il-Gu Lee, Hyunwoo Choi, Yongdae Kim, Seungwon Shin, and Myungchul Kim, “Run Away If You Can: Persistent Jamming Attacks against Channel Hopping Wi-Fi Devices in Dense Networks”, Symposium on Research in Attacks, Intrusions and Defenses, Gothenburg, Sweden, Sep., 2014 [paper]
  • (CCS) Seungwon Shin, Vinod Yegneswaran, Phil Porras, and Guofei Gu, “AVANT-GUARD: Scalable and Vigilant Switch Flow Management in Software-Defined Networks”, 20th ACM Conference on Computer and Communications Security, Berlin, Germany, 2013 [paper]
  • (ICC) Sooel Son, Seungwon Shin, Vinod Yegneswaran, Phil Porras, and Guofei Gu, “Model Checking Invariant Security Properties in OpenFlow”IEEE International Conference on Communications, Budapest, Hungary, June, 2013 [paper]
  • (ONS) Seungwon Shin, Phillip Porras, Vinod Yegneswaran, Guofei Gu, “A Framework For Integrating Security Services into Software-Defined Networks”, Open Networking Summit (ONS’13,Research Track poster paper), Santa Clara, CA, April 2013 [paper]
  • (NDSS) Seungwon Shin, Phillip Porras, Vinod Yegneswaran, Martin Fong, Guofei Gu, and Mabry Tyson, “FRESCO: Modular Composable Security Services for Software-Defined Networks”, 20th Annual Network & Distributed System Security Symposium, San Diego, California, U.S.A., February, 2013 [paper] (Finalist for AT&T Best Applied Security Paper Award 2013)
  • (WISA) Yongjoo Song, Seungwon Shin and Yongjin Choi. “Network Iron Curtain: Hide Enterprise Networks with OpenFlow”, 14th International Workshop on Information Security Applications, Jeju, Korea, August 2013 [pdf]
  • (SIGCOMM-HotSDN) Seungwon Shin and Guofei Gu. “Attacking Software-Defined Networks: The First Feasibility Study” (short), ACM SIGCOMM Workshop on Hot Topics in Software Defined Networking, Hongkong, China, August 2013 [paper]
  • (Computer Networks) Seungwon Shin, Zhaoyan Xu, and Guofei Gu. “EFFORT: A New Host-Network Cooperated Framework for Efficient and Effective Bot Malware Detection”, International Journal of Computer and Telecommunications Networking (Elsevier), 2013 [paper]
  • (ICNP-NPSec) Seungwon Shin, Guofei Gu. “CloudWatcher: Network security monitoring using OpenFlow in dynamic cloud networks”, 20th IEEE International Conference on Network Protocols NP-Sec Workshop,Austin, USA, Oct 2012 [paper]
  • (TIFS) Seungwon Shin, Guofei Gu, Narasimha Reddy, Christopher P Lee. “A large-scale empirical study of conficker”, IEEE Transactions on Information Forensics and Security, April 2012 [Journal] [paper]
  • (INFOCOM) Seungwon Shin, Zhaoyan Xu, Guofei Gu. “EFFORT: Efficient and Effective Bot Malware Detection.” IEEE Conference on Computer Communications Mini-Conference, Orlando, FL, Mar., 2012
  • (SIGCOMM-HotSDN) Seungwon Shin, Vinod Yegneswaran, Martin Fong, Mabry Tyson, Guofei Gu. “A security enforcement kernel for OpenFlow networks”, ACM SIGCOMM Workshop on Hot Topics in Software Defined Networking, Helsinki, Finland, August 2012 [paper]
  • (WWW) Chao Yang, Robert Harkreader, Jialong Zhang, Seungwon Shin, Guofei Gu. “Analyzing spammers’ social networks for fun and profit: a case study of cyber criminal ecosystem on twitter”, the 21st international conference on World Wide Web, Lyon, France, April 2012 [paper]
  • (RAID) Seungwon Shin, Raymond Lin, Guofei Gu. “Cross-analysis of botnet victims: New insights and implications”, Recent Advances in Intrusion Detection, Jan 2011 [paper]
  • (TAMU-Technical) Seungwon Shin, Zhaoyan Xu, and Guofei Gu. “CloudRand: Building Heterogeneous and Moving-target Port Interfaces for Networked Systems”Technical Report, Department of Computer Science & Engineering, Texas A&M University, 2011 [paper]
  • (ACSAC) Seungwon Shin and Guofei Gu. “Conficker and Beyond: A Large-Scale Empirical Study”, Annual Computer Security Applications Conference, Austin, Texas, U.S.A., December 2010 [paper]
  • (IMC) Seungwon Shin, Jaeyeon Jung and Hari Balakrishnan. “Malware Prevalence in the KaZaA File-Sharing Network”, Internet Measurement Conference, Rio de Janeiro, Brazil, October 2006. [paper]