DDoS attack tracing system and method based on software-defined network

A software-defined network and distributed rejection technology, applied in the field of network security, can solve problems such as difficulty in normal work and heavy burden on the controller, and achieve the effect of facilitating information matching and reducing the burden

Inactive Publication Date: 2020-08-04
SHANDONG UNIV
View PDF6 Cites 17 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, these solutions only rely on the controller to trace the source of the attack on the entire network, which requires the controller to continuously obtain and analyze the traffic information in the network. When the network scale is large, the controller has a huge burden and cannot work normally.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • DDoS attack tracing system and method based on software-defined network
  • DDoS attack tracing system and method based on software-defined network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] In order to describe the technical content of the present invention more clearly, the present invention is further described below with reference to the accompanying drawings.

[0037] The invention designs a distributed denial of service DDoS attack source tracing system based on a software-defined network. The invention draws on the idea of ​​edge computing, sets up edge switches, delegates most of the work of attack source tracing to the edge switch side, and designs a DDoS attack source tracing system based on a software-defined network.

[0038]Aiming at the problem of heavy burden on the controller when tracing the source of DDoS attacks in the software-defined network, the system uses programmable OpenFlow edge switches to perform initial attack detection and data packet recording. The controller uses the random forest algorithm to confirm the attack only after receiving the warning. Then, the attack packet feature information is sent to the edge switch, and the ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a DDoS attack tracing system and method based on a software-defined network, and belongs to the technical field of software-defined network security defense. The tracing systemcomprises an out-of-domain attack source, an attacked host, an OpenFlow switch and an SDN controller. According to the method, an initial detection module is arranged on an edge switch, and when abnormality is found, information of a data packet flowing through is recorded, and a controller is warned. The controller receives an alert, and collects global network traffic information, a random forest algorithm is applied, attack occurrence is determined more accurately by extracting depth features of flow, then attack packet feature information is issued to an edge switch, the edge switch findsout an attack port through information matching and reports the attack port to a controller, and the controller issues a flow table, discards an attack packet at an attack source and blocks an attack. According to the system, the main work of attack tracing is issued to the edge switch, the burden of the controller is effectively reduced, and the system has practical application value.

Description

technical field [0001] The invention relates to a software-defined network security defense technology, and belongs to the technical field of network security. Background technique [0002] With the development of emerging technologies such as cloud computing and big data, network traffic continues to increase, and the traditional IP-centric network architecture cannot meet the needs of network scalability, management, and flexibility. Software Defined Network (SDN) is a new type of network architecture, which was born in a research project of Stanford University in the United States. It guides the data forwarding of the underlying switches, thereby improving the flexibility and scalability of the network, and making the management of network traffic more convenient. [0003] Distributed Denial-of-Service (DDoS) attack has become one of the biggest threats to network security. It has strong destructive power, simple implementation and lack of simple and feasible countermeas...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/24
CPCH04L41/12H04L63/1416H04L63/1425H04L63/1458
Inventor 李俣张吉成刘琚于山山
Owner SHANDONG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap