Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

A method and system for defending chaos moving targets based on SDN

A mobile target defense and purpose technology, applied in the SDN-based Chaos mobile target defense method and system field, can solve the problems of host communication confusion protection, lack of flexibility, easy to cause malicious attackers, etc., to reduce confusion costs and improve confusion Efficiency, the effect of improving system efficiency

Active Publication Date: 2018-05-11
WUHAN UNIV
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] Since the above-mentioned schemes implement consistent obfuscation protection for all host communications in the intranet, for an enterprise, the flexibility to defend against malicious attackers is lacking, and it is easy to attract the attention of malicious attackers

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and system for defending chaos moving targets based on SDN
  • A method and system for defending chaos moving targets based on SDN
  • A method and system for defending chaos moving targets based on SDN

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0052] In order to facilitate the understanding and implementation of the present invention by those of ordinary skill in the art, the present invention will be further described in detail with reference to the accompanying drawings and embodiments. It should be understood that the implementation examples described here are only used to illustrate and explain the present invention, and are not intended to limit this invention.

[0053] The present invention provides an SDN-based Chaos mobile target defense method, including random IP defense methods and confusion defense methods; the present invention uses the Chaos tower structure to classify the hosts of a large network according to the degree of importance, and adopts the flow legality algorithm according to Chaos The structure of the tower analyzes the current communication traffic between the two hosts to determine whether the access between the two hosts is legal;

[0054] If the access between the two hosts is legal, the ran...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a Chaos moving target defense method based on an SDN and a system thereof. Confusion and dynamic change functions of a network system for requesters can be realized by utilizing a Chaos tower algorithm, a confusion defense method and a random IP defense method. Therefore, a Chaos tower structure is designed by the system to grade the hosts of the network according to degree of importance. Confusion defense performs grade confusion on illegal access, and confusion of return information is performed according to the confusion index so that attackers are enabled to receive false information; and when the confusion index excessively high, communication is directly blocked out. Random IP defense is performed on legal flow network access, and flow tables are periodically issued via a controller to perform IP random conversion on legal communication in an intranet environment. Network equipment in the area has extremely high anonymity and fluctuation under the condition of guaranteeing normal information exchange efficiency so that probing of intruders can be defended, attack range is widened and attack cost is increased.

Description

Technical field [0001] The invention belongs to the field of Internet technology, and in particular relates to a new SDN-based Chaos mobile target defense method and system. Background technique [0002] Intranet security has become a new hot spot in information security. Survey data shows that 63.6% of enterprise users in my country are at a "high risk" level, and the annual economic loss caused by network leaks is as high as tens of billions. Although most companies attach great importance to internal network security management issues, and investment in internal network security is increasing, internal network security is still severe. [0003] Today's corporate intranets are mostly built on static systems, so those intranet attack tools are also tailor-made for static networks, such as Nmap, worms, Cain, etc. Moreover, the cost of intranet security defense is seriously unequal to the efforts of malicious attackers to break through the network. Intranet defenders often need to...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
CPCH04L63/1408
Inventor 王鹃肖峰文茹黄坚伟林丽丽樊成阳
Owner WUHAN UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com