Network layer mobile target defense method and system based on OpenFlow

A moving target defense, network layer technology, applied in the field of network layer moving target defense based on OpenFlow, can solve problems such as upper layer opacity and network incompatibility, and achieve the effect of avoiding attacks

Inactive Publication Date: 2018-12-07
ZHEJIANG JIESHANG ARTIFICIAL INTELLIGENCE RES & DEV CO LTD
View PDF0 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] In order to overcome the deficiencies in the prior art, one of the purposes of the present invention is to provide a network layer mobile target defense method based on OpenFlow, which can solve the problem that most of the existing achievements are based on third-party software to achieve opaque protection of the upper layer. Relevant changes, the solution that does not use third-party software has the problem of incompatibility with the existing network
[0004] The second object of the present invention is to provide a network layer mobile target defense system based on OpenFlow, which can solve the problem that most of the existing achievements are based on third-party software to realize the opaque protection of the upper layer, and the upper layer applications must be modified without using third-party software. The solution has the problem of incompatibility with the existing network

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network layer mobile target defense method and system based on OpenFlow
  • Network layer mobile target defense method and system based on OpenFlow

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0032] Below, the present invention will be further described in conjunction with the accompanying drawings and specific implementation methods. It should be noted that, under the premise of not conflicting, the various embodiments described below or the technical features can be combined arbitrarily to form new embodiments. .

[0033] Such as figure 1 Shown, a kind of network layer mobile target defense system based on OpenFlow of the present invention specifically comprises the following steps:

[0034] Address acquisition, obtaining the network address information of the source node and querying the destination address information containing the public network address of the destination node through the DNS server in the source LAN;

[0035] Construct initial data packet header information, and construct initial data packet header information according to network address information and destination address information;

[0036] The first IP hop sends the initial data pack...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a network layer mobile target defense method and system based on OpenFlow. The method comprises steps of address acquisition, construction of initial data packet header information, first IP jump, first port jump, second port jump, second IP jump and destination node communication. The method is advantaged in that upper-layer opacity protection can be achieved without third-party software, that is, modifying an upper-layer application is not needed, and the information sent from a node is always in the movement and change state, and thereby attack of an attacker is effectively avoided.

Description

technical field [0001] The invention relates to the field of network information defense, in particular to an OpenFlow-based network layer mobile target defense method and system. Background technique [0002] In recent years, with the occurrence of many security incidents with widespread hazards (Prism Gate, SSL Heartbleed, etc.), network security has once again received extensive attention. Traditional network security technology usually adopts passive defense (such as firewall, intrusion detection technology, etc.). This type of defense technology usually exposes the target of protection, and the premise of detection and protection is that the attack is taking place. This method is very disadvantageous for the protector, and the defender is always in a passive defense position. Active defense technology is a defense method that allows the protector to take the initiative in the offensive and defensive game. Moving target defense technology is an important research dire...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
CPCH04L63/1425H04L63/0236H04L63/1441H04L63/16H04L63/20
Inventor 尚凌辉陈鑫叶淑阳
Owner ZHEJIANG JIESHANG ARTIFICIAL INTELLIGENCE RES & DEV CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap