Method and device for random jumping of network management plane address

A network management and address technology, applied in the transmission system, electrical components, etc., can solve the problem of not providing IP jump mechanism, etc., to achieve the effect of increasing complexity and cost, reducing risk, and strong resistance

Active Publication Date: 2019-07-16
NO 30 INST OF CHINA ELECTRONIC TECH GRP CORP
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] Among them, technologies such as APOD, DyNAT, and NASR do not provide an IP hopping mechanism that can prevent internal and external interception attacks without changing the configuration of the terminal host; while RHM and OF-RHM technologies pass the actual address maintained by the controller to the virtual address. The mapping realizes a one-time address jump in the communication process, and does not realize multiple variable IP addresses in the data transmission process

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for random jumping of network management plane address
  • Method and device for random jumping of network management plane address
  • Method and device for random jumping of network management plane address

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0056] When the host H1 sends a message to the host H2, the address hopping during the transmission is realized through the following process.

[0057] 1) After the host H1 obtains the IP address of the host H2 in some way in advance, the packet is sent to the host H2, and the data flow first reaches the switch Switch1 connected to the host H1;

[0058] 2) When the switch Switch1 receives the first data packet of the data flow, it searches the flow table. Since it is the first time to receive the flow, there is no matching flow table. The switch Switch1 will extract the flow information (source, destination IP address, port, etc.) to form a PacketIn message and send it to the controller Controller;

[0059] 3) The controller Controller obtains information such as the packet header of the data flow according to the PacketIn message sent by the switch Switch1;

[0060] 4) The controller judges that the hosts on both sides of the communication are in an OpenFlow domain according...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to the technical field of prevention of network information eavesdropping, and provides a random jumping method and device for a network management plane address, for solving the problem in the prior art. Inherent IP addresses and ports of source and destination hosts do not need to be re-configured. By means of the method provided by the invention, address jumping has the relatively high frequency; an address is predicted more difficultly; therefore, two attributes including a network node address and port of a network are changed continuously; the network attack complexity and expense are increased; the risk that the network is successfully attacked is reduced; a controller in the invention traverses all switches on a route, and sends a flow table to each switch; according to the sent flow table, the selected switch on the route performs matching of data flows, and changing and forwarding of a header IP address; and data transmission between the source host and the destination host is completed through continuous jump of the IP address on a transmission path.

Description

technical field [0001] The invention relates to the technical field of preventing network information eavesdropping, in particular to a method and device for random jumping of network management plane addresses. Background technique [0002] As a technology that can effectively prevent network information eavesdropping, the research on address and port hopping technology in the field of network security has become more and more in-depth. Address and port hopping means that a network node has the ability to randomly change its own address and port, or the ability of the address and port to change continuously during transmission. [0003] In terms of address and port hopping technology research, there are currently research results including APOD, DyNAT and NASR. APOD uses a random "hopping tunnel" based on addresses and ports to disguise the target host. During the IP address hopping process The cooperation between the client and the server is required; DyNAT provides a mec...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/12
CPCH04L61/2503H04L63/1441
Inventor 高诚陈世康王宏
Owner NO 30 INST OF CHINA ELECTRONIC TECH GRP CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap