Cross-layer cooperative detection method of DDoS attack based on software defined network

A collaborative detection and cross-layer technology, applied in electrical components, transmission systems, etc., can solve the problems of heavy burden on SDN controllers and high pressure on SDN southbound interfaces, and achieve the effect of improving detection efficiency

Active Publication Date: 2018-06-19
NAT UNIV OF DEFENSE TECH
View PDF5 Cites 17 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0014] The present invention proposes an SDN-based cross-layer collaborative detection method for DDoS attacks, fully utilizes the respective advantages of the control layer and the data layer for collaborative cooperation, and solves the problems of high pressure on the SDN southbound interface and excessive burden on the SDN controller caused by the DDoS detection process. Effectively improve the detection efficiency of DDoS attacks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Cross-layer cooperative detection method of DDoS attack based on software defined network
  • Cross-layer cooperative detection method of DDoS attack based on software defined network
  • Cross-layer cooperative detection method of DDoS attack based on software defined network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0083] figure 2 It is an overall flowchart of the present invention; the present invention comprises the following steps:

[0084] The first step is to build an SDN-based DDoS attack cross-layer collaborative detection architecture, such as image 3 As shown, the SDN-based DDoS attack cross-layer collaborative detection architecture consists of a data plane and a control plane, and the control plane communicates with the data plane through the southbound interface. The data plane is composed of switches, which are responsible for data transmission; the control plane is composed of SDN controllers, which are responsible for the management of switches in the data plane.

[0085] A switch agent is installed on the SDN switch, which has a data path, and is also equipped with a DDoS attack perception module and a feature extraction module. Hardware counters in the switch count all packets and bits passing through the switch data path.

[0086] The controller agent is installed ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a cross-layer cooperative detection method of a DDoS attack based on an SDN for improving the detection efficiency of the DDoS attack. The technical scheme is as follows: constructing cross-layer collaborative detection architecture based on the SDN composed of a data layer and a control layer, wherein a data path, a switch proxy, a DDoS attack sensing module and a featureextraction module are arranged on an SDN switch of the data layer; and a controller proxy, an event manager, a DDoS attack classification module and a botnet tracing module are arranged on an SND controller of the control layer. The data layer performs coarse granularity detection on the data traffic to obtain DDoS attack abnormal traffic data, and the control layer performs fine-grained detectionon the abnormal traffic data of the DDoS attack. According to the cross-layer cooperative detection method disclosed by the invention, by means of the cooperation of the data layer and the control layer, the problems of large southbound interface pressure of the SDN and overlarge pressure of the SND controller are solved, the type of DDoS attack can be detected, and a switch set close to a botnetcan also be detected, so that the speed and accuracy of detecting the DDoS attack are improved.

Description

technical field [0001] The present invention relates to the field of computer network security, in particular to a cross-layer collaborative detection method for DDoS (Distributed Denial of Service) attacks based on SDN (Software Defined Network, software defined network). Background technique [0002] With the rapid development of computer network technology, network attacks and destructive behaviors are becoming more and more frequent, and the situation of computer network security is becoming increasingly severe. Among them, DDoS attack is one of the most concerned security problems in computer network at present. DDoS attacks usually use botnets to send a large number of service requests to victims, resulting in a large amount of resources consumed by victims, so that they cannot respond to legitimate user requests in a timely manner, or even completely paralyzed. With the development of network technology, the traffic of DDoS attacks is also increasing, making it more ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/1416H04L63/1425H04L63/1458H04L2463/144H04L2463/146
Inventor 韩彪苏金树王宝生孙志刚陈曙晖赵宝康陶静时向泉赵锋杨翔瑞王汉文
Owner NAT UNIV OF DEFENSE TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap