SDN network DDoS attack detecting method based on network layer flow abnormity

A traffic anomaly and attack detection technology, applied in electrical components, transmission systems, etc., can solve problems such as network equipment and network service threats, SDN network security impact, and network services cannot be provided normally, and achieve the effect of improving detection accuracy.

Inactive Publication Date: 2015-12-16
HARBIN ENG UNIV
View PDF3 Cites 53 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

DDoS attacks can quickly exhaust key resources (such as bandwidth, buffers, processor resources, etc.) Denial of service attacks bring threats

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • SDN network DDoS attack detecting method based on network layer flow abnormity
  • SDN network DDoS attack detecting method based on network layer flow abnormity
  • SDN network DDoS attack detecting method based on network layer flow abnormity

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0019] The present invention will be further described below in conjunction with accompanying drawing:

[0020] As a brand-new network architecture model, SDN realizes the development and expansion of network management and control functions through open software programmable interfaces, realizes centralized management of the entire network, and improves the flexibility and scalability of the network. Openness and centralized control make it vulnerable to DDoS attacks. Researching a distributed DDoS attack detection method for SDN networks is of great significance to maintaining SDN network security. The present invention just aims at this problem, and discloses a technical solution for detecting DDoS attacks in an SDN network based on abnormal traffic at the network layer. This technical solution designs and implements a distributed DDoS attack detection method for SDN networks based on the abnormal detection of data traffic at the network layer and the research on the distri...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a SDN network DDoS attack detecting method based on network layer flow abnormity in order to detect and process a DDoS attack in a SDN network according to the network layer flow abnormity. The method comprises steps of: getting access to an OpenFlow switch flow table information items by using a SDN network controller in order to acquire a communication flow characteristic reaching the OpenFlow switch; and analyzing and processing the acquired detection characteristic by using introduced information entropy and single-side connection density in order to obtain a training and detection characteristic element group. It is found that in a implementing process, the SDN network DDoS attack detecting and processing method based on network layer flow abnormity may effectively improve detection accuracy of the DDoS attack generated in the SDN network, makes corresponding treatment on a communication flow according to a detected result, may well deal with the DDoS attack, from which a network may possibly suffer, in the form of saturated flow, and has very obvious beneficial effects.

Description

technical field [0001] The invention relates to an SDN network DDoS attack detection method based on abnormal network layer traffic for detecting and processing DDoS attacks under an SDN network. technical background [0002] SDN replaces the closed network configuration and management layer in the traditional switching network with the control layer of open software mode, separates the control function from the network communication equipment, and realizes the purpose of separating the control and forwarding functions in the network architecture. OpenFlow is the current SDN general implementation. SDN simplifies network management, but also introduces security risks related to its own characteristics, such as DDoS attacks. DDoS attacks can quickly exhaust key resources (such as bandwidth, buffers, processor resources, etc.) Denial of service attacks bring threats that cannot be ignored to network devices and network services in SDN networks, and have a greater impact on t...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
CPCH04L63/1458H04L63/1416
Inventor 张国印高伟李土深宇凡强付小晶
Owner HARBIN ENG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap