Malicious code detection method based on SDN (Software Defined Networking)

A malicious code detection and malicious code technology, applied in the field of computer network security, can solve the problem of high computational consumption of malicious code
CN105956473AActive Publication Date: 2016-09-21GUANGDONG POLYTECHNIC NORMAL UNIV
6 Cites 12 Cited by

Patent Information

Authority / Receiving Office
CN Β· China
Patent Type
Applications(China)
Current Assignee / Owner
GUANGDONG POLYTECHNIC NORMAL UNIV
Publication Date
2016-09-21

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
Patent Text Reader

Abstract

The invention discloses a malicious code detection method based on an SDN (Software Defined Networking), and belongs to the technical field of computer network security. New opportunities and challenges of solving detection and prevention problems of malicious codes under new architecture are brought to a network information security field by a brand new design concept of separating control and forwarding of the SDN. According to the method, through analysis of an SDN switch flow table characteristic selection method, a security data ranking and dimension reduction method for traffic characteristic selection based on OpenFlow is provided; on this basis, through comparison of influences on the operation time of different classification algorithms after characteristic selection, a reduction dimension m selection problem is analyzed, and the optimum characteristic subsets and matched classification algorithms corresponding to different kinds of malicious codes are found; the propagation characteristics and evolution models of the malicious codes in an SDN mobile environment are analyzed, thereby obtaining the influences of a node migration rate in a mobile network on the infection condition and explosion time of the malicious codes in a source sub-network and a target sub-network, and the influences have reference values on the routing control of the SDN controller to the switch nodes or host nodes.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention belongs to the technical field of computer network security. Background technique

[0002] As a new network architecture based on software technology, the new design concept and innovative application of SDN (Software Defined Networking) have brought new opportunities and challenges to the field of network information security. Since SDN uses centralized control, intuitively, it means greater security risks. On the other hand, SDN is also impacting traditional security protection technologies. Due to the separation of SDN network control and forwarding, loopholes brought by various open applications are inevitable. Malicious codes include computer viruses, network worms, Trojan horses, logic bombs and DDOS attacks, etc. For SDN networks, the analysis and detection of malicious code is also an important problem that needs to be solved.

[0003] To this end, the invention is based on the idea of ​​SDN, and an analysis model of malicious c...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More