SDN flow trace tracking method, device and system based on flow watermark and random sampling

A random sampling and watermarking technology, applied in the transmission system, digital transmission system, advanced technology, etc., can solve the problems of SDN malicious switch detection, traffic delay, traffic forgery, etc., and achieve small and scalable network and traffic forwarding performance The effect of scope

Active Publication Date: 2018-05-08
THE PLA INFORMATION ENG UNIV
View PDF3 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] Malicious switches can randomly or selectively discard data packets passing through them, causing serious degradation of network performance or denial of service attacks, etc.
[0005] (2) Traffic forgery
[0013] (6) Traffic delay
Packet sampling and port mirroring technologies are more efficient in data plane information extraction, but it is difficult to apply them to SDN malicious switch detection

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • SDN flow trace tracking method, device and system based on flow watermark and random sampling
  • SDN flow trace tracking method, device and system based on flow watermark and random sampling
  • SDN flow trace tracking method, device and system based on flow watermark and random sampling

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0080] Such as figure 1 Shown, a kind of SDN flow tracking method based on flow watermark and random sampling of the present invention comprises the following steps:

[0081] Step S101: collect topology information from the data plane through the OpenFlow protocol and the LLDP protocol, and construct the topology map of the SDN switch;

[0082] Step S101: collect topology information from the data plane through the OpenFlow protocol and the LLDP protocol, and construct the topology map of the SDN switch;

[0083] Step S102: Generate a unique watermark for the data flow that can identify the data flow, and save the watermark and the flow path of the corresponding data flow in the watermark-flow path hash table;

[0084] Step S103: formulate flow rules for forwarding data flows for the SDN switch flow table on the flow path of the data flow, and install the flow rules with embedded flow watermark operations into the first SDN switch flow table of the flow path of the data flow,...

Embodiment 2

[0090] Such as Figure 2-4 Shown, another kind of SDN flow trace tracking method based on flow watermark and random sampling of the present invention comprises the following steps:

[0091] Step S201: collect topology information from the data plane through the OpenFlow protocol and the LLDP protocol, and construct a topology map of the SDN switch, including:

[0092] Step S2011: the SDN controller encapsulates the LLDP message into a PACKET_OUT message and distributes it to each SDN switch;

[0093] Step S2012: The SDN switch broadcasts the LLDP message to each port according to the instruction in the PACKET_OUT message, and other SDN switches connected to the SDN switch will receive the LLDP message sent by the SDN switch;

[0094] Step S2013: The SDN switch that receives the LLDP message looks up the flow table, but since there is no content in the flow table of the SDN switch at this time, the SDN switch will encapsulate the message into a PACKET_IN message and forward it...

Embodiment 3

[0111] Such as Figure 5 Shown, a kind of SDN flow trace tracking device based on flow watermark and random sampling of the present invention comprises:

[0112] The topology information collection module 301 is used to collect topology information from the data plane through the OpenFlow protocol and the LLDP protocol, and construct the topology map of the SDN switch;

[0113] The watermark generating module 302 is configured to generate a unique watermark capable of identifying the data flow for the data flow, and save the watermark and the flow path of the corresponding data flow into the watermark-flow path hash table;

[0114] The flow rule installation module 303 is configured to formulate a flow rule for forwarding the data flow for the SDN switch flow table on the flow path of the data flow, and at the same time install the flow rule with an embedded flow watermark operation into the first SDN switch flow of the flow path of the data flow Table, the flow rule with the...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to the technical field of SDN switch security defense, and provides an SDN flow trace tracking method based on a flow watermark and random sampling. The SDN flow trace tracking method comprises the steps that an SDN switch topological map is constructed; the flow watermark which can uniquely identify the data stream is generated for the data stream; the flow rules for forwarding the data stream are made; the flow watermark is embedded in the data stream; the flow watermark is removed from the data stream; and if the forwarding abnormity is discovered, the SDN switch generating the abnormal forwarding behavior is traced. The invention also provides an SDN flow trace tracking device based on the flow watermark and random sampling. The SDN flow trace tracking device comprises a topological information collection module; a flow watermark generation module; a flow rule installing module; a flow watermark embedding module; a flow watermark removing module; and an abnormal forwarding discovery module. The invention also provides an SDN flow trace tracking system based on the flow watermark and random sampling. The SDN flow trace tracking system comprises multiple SDNswitches and any SDN flow trace tracking device based on the flow watermark and random sampling. The malicious forwarding behavior of multiple SDNs can be effectively detected.

Description

technical field [0001] The invention relates to the technical field of security defense of SDN switches, in particular to an SDN flow trace tracking method, device and system based on flow watermarks and random sampling. Background technique [0002] Currently, there are seven types of malicious forwarding behaviors that threaten the data plane of SDN networks: [0003] (1) packet loss [0004] Malicious switches can randomly or selectively discard data packets passing through them, causing serious degradation of network performance or denial of service attacks. [0005] (2) Traffic forgery [0006] Malicious switches can arbitrarily craft packets and forward them to the control plane or data plane. [0007] (3) Traffic modification [0008] Malicious switches can modify the content of the traffic, i.e. the overhead or payload of the packets. Traffic modification can often cause other traffic abnormalities. For example, modifying the Time to Live (TTL) value of the IP (...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/743H04L12/751H04L45/02
CPCH04L45/02H04L45/7453H04L63/123H04L63/126H04L63/1408H04L63/1425H04L63/1441Y02D30/00
Inventor 张连成宇文慧强王振兴郭毅孔亚洲辜苛峻
Owner THE PLA INFORMATION ENG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap