Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Honey net safeguard system and honey net safeguard method for SDN (self-defending network)

A technology of security protection and honeynet, applied in the field of network security, can solve problems such as roughness, insufficient honeynet resources, difficulty in normal use of honeynet, etc., and achieve the effect of protecting security

Active Publication Date: 2015-04-08
蓝盾信息安全技术有限公司
View PDF3 Cites 46 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] The multi-level honeynet transmission method and system provided by this technology simply divide the threat level into three categories. Although it is improved compared with the traditional honeynet, it is still rough
In addition, each type of suspicious traffic is simply imported into the originally set honeynet. This mechanism is relatively rigid and inflexible; traffic of the same threat level is merged into a fixed honeynet, which is not conducive to the separate analysis of each attack.
In addition, when the scale of attack traffic suddenly increases and exceeds the expected setting, the honeynet resources are insufficient, making it difficult to normally play the role of honeynet protection and monitoring.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Honey net safeguard system and honey net safeguard method for SDN (self-defending network)
  • Honey net safeguard system and honey net safeguard method for SDN (self-defending network)
  • Honey net safeguard system and honey net safeguard method for SDN (self-defending network)

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0043] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

[0044] In order to solve the shortcomings or deficiencies in the prior art that the honeynet protection cannot provide the honeynet in a flexible and timely manner and the protection mechanism is triggered after a period of time after a network attack, a scheme of a honeynet security protection system and method for an SDN network is adopted, In this way, the purpose of providing a honeynet flexibly and quickly according to different attack types and introducing the...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a honey net safeguard system for an SDN (self-defending network). The system comprises a network intrusion detection module, a honey net management module and an SDN controller cluster management module; the network intrusion detection module is used for performing intrusion detection on flow entering an organization; the honey net management module is the most important module of the system, and comprises a honey net design module, a honey net construction module, a flow rule conversion module, an encryption transmission module and a honey net model database; the SDN controller cluster management module is used for performing coordinated management and communication maintenance on a plurality of controllers in an organization intranet; furthermore, the invention also discloses a honey net safeguard method for the SDN. Through the honey net safeguard system and the honey net safeguard method, a honey net meeting the requirements can be automatically constructed according to each attack or each class of attacks or by artificially appointing the set of attack types, so a safety manager can be helped to better monitor suspicious attack conditions, and responds effectively.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a honeynet security protection system and method for an SDN network. Background technique [0002] Honeynet is a new concept gradually developed in honeypot technology, and it can also become a trapping network. Honeypot technology is essentially a research-type high-interaction honeypot technology. Its main purpose is to collect hacker attack information. But the difference with the traditional honeypot technology is that the honeynet constitutes a hacker trap network architecture, in which one or more honeypots can be included, while ensuring a high degree of controllability of the network and providing a variety of tools To facilitate the collection and analysis of attack information. [0003] Classification of honeynet technology: [0004] (1) Depending on the level of interaction [0005] Honeynets are classified according to the interaction between honeynets a...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/14
Inventor 杨育斌程丽明柯宗贵
Owner 蓝盾信息安全技术有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products