Method for active security defense of SDN network based on information entropy calculation

A technology of active security and information entropy, applied in the direction of data exchange network, digital transmission system, electrical components, etc., can solve problems such as low efficiency, active security defense of SDN network, and unreasonable network topology structure, so as to reduce hidden risks, Improving real-time forwarding efficiency and eliminating the effect of individual failures

Inactive Publication Date: 2020-06-16
上海科技网络通信有限公司
View PDF5 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The purpose of the present invention is to solve the unreasonable, low efficiency of the network topology existing in the prior art and the protection shortcomings that cannot be used for active security defense of the SDN network, and the proposed method for the active security defense of the SDN network based on information entropy calculation method

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for active security defense of SDN network based on information entropy calculation
  • Method for active security defense of SDN network based on information entropy calculation
  • Method for active security defense of SDN network based on information entropy calculation

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0032] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention.

[0033] Such as figure 1 and figure 2 As shown, the method for active security defense of SDN network based on information entropy calculation includes the following steps:

[0034] S01: Input traffic, input the network traffic in the SDN into the SDN switch, and obtain the original network traffic;

[0035] S02: information entropy calculation, calculate the obtained network traffic using the information entropy calculation method, and obtain the entropy value data of the network traffic;

[0036] S03: Determine the entropy value, define the destination address information entropy threshold, and judge the data size of the network traffic entropy value and the dest...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method for active security defense of an SDN network based on information entropy calculation. The method comprises the following steps: S01, inputting traffic; S02, calculating an information entropy, defining a destination address information entropy threshold, and judging the entropy of the network flow and the data size of the destination address information entropy threshold; S03, judging an entropy value; S04, producing a forwarding table; S05, processing the traffic. In the present invention, according to the SDN network active security defense method, information entropy calculation is carried out on network traffic; the defects in the existing network security equipment deployment architecture can be avoided; the real-time forwarding efficiency of the network is improved; according to the SDN network security defense method and system, the unreasonable topological structure of the network is eliminated, so the single fault of the network is eliminated, the risk hidden danger of the network is reduced, the forwarding traffic table can be customized, the abnormal flow is processed, and the abnormal traffic in the SDN network is actively identified and processed through the calculation of the information entropy, thereby achieving the purpose of active network security defense.

Description

technical field [0001] The invention relates to the technical field of SDN network security, in particular to a method for active security defense of an SDN network based on information entropy calculation. Background technique [0002] Software-defined networking is an implementation of network virtualization. Its core technology, OpenFlow, separates the control plane and data plane of network devices, thereby realizing flexible control of network traffic and making the network more intelligent as a pipeline. The innovation of the core network and applications provides a good platform. The management of network traffic has always been an important part of network system security, including the management of application traffic such as BT, P2P, and illegal website access. The timely processing of abnormal traffic such as SPAM and DDOS has become one of the most important measures to realize network system security. [0003] Traditional network switches forward data through ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/741H04L12/751H04L12/801H04L12/823H04L45/02H04L45/74H04L47/32
CPCH04L63/1425H04L63/1458H04L45/02H04L45/745H04L47/29H04L47/32
Inventor 邓玉成肖晓滨朱晓华吴南亮
Owner 上海科技网络通信有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap