Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

SDN network DDoS attack detection method based on optimized BP neural network

A BP neural network and attack detection technology, applied in the field of DDoS attack detection, can solve the problems of loss of network control, low detection result accuracy, and algorithm not getting the optimal solution.

Active Publication Date: 2019-01-01
SHANGHAI MARITIME UNIVERSITY
View PDF7 Cites 14 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, because the control plane and the data plane are decoupled, when the connection between the switch and the controller fails, the network will lose control. Therefore, the security of the controller is one of the security guarantees of the entire SDN network, and DDoS attacks are the security of the controller. One of the threats, how to detect accurate DDoS attacks is critical to SDN security
[0003] In the existing methods, although a large number of effective DDoS attack detection methods are proposed, they only use the interactive characteristics of the network flow, and the comprehensiveness of the judgment is not enough, or the convergence speed of the detection model is slow, the training time is long, and the algorithm used has not been optimized. Excellent solution, low accuracy of detection results

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • SDN network DDoS attack detection method based on optimized BP neural network
  • SDN network DDoS attack detection method based on optimized BP neural network
  • SDN network DDoS attack detection method based on optimized BP neural network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0079] The technical solution of the present invention will be described in detail below, but the protection scope of the solution is not limited to the embodiments.

[0080] The present invention is further described below in conjunction with embodiment and accompanying drawing.

[0081] Such as figure 1 As shown, an SDN network DDoS attack detection method based on an optimized BP neural network includes the following steps:

[0082] Step 1, the flow table collection module inside the software-defined network SDN (SoftwareDefinedNetwork) controller periodically sends a flow table request to the OpenFlow switch, and the regular acquisition time interval is T (T in the example is 3 seconds); the OpenFlow switch passes the flow table information through The secure channel is sent to the feature extraction module in the SDN controller.

[0083] Among them, the OpenFlow switch is responsible for forwarding data packets according to the flow table in the SDN network. It consists...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention proposes an SDN network DDoS attack detection method based on an optimized BP neural network. The method achieves the more complete extraction of six feature values, correlated with DDoS, in a lower flow table of an SDN network environment: source IP address acceleration GSIP, flow survival time change ADF, opposite flow ratio PPF, port acceleration GSP, a flow table item speed RFE,and a flow matching success rat RFM. Through the setting of a triggering threshold value, the method reduces the load of the SDN network, and employs a particle swarm optimization algorithm for optimizing the BP neural network, selects the mean square error of the BP neural network as a fitness function of the particle swarm optimization algorithm, selects the value with the best fitness as the threshold and weight of the BP neural network, avoids the conditions that the slow solving speed of the optimal solution of the BP neural network causes a locally optimal solution, and improves the detection precision.

Description

technical field [0001] The invention relates to a DDoS attack detection technology, in particular to an SDN network DDoS attack detection method based on an optimized BP neural network. Background technique [0002] Distributed Denial of Service (Distributed Denial of Service, DDoS) attack is one of the main threats facing the current Internet. DDoS attack initiators first exploit the vulnerabilities of Internet users to collect a large number of puppet machines, and then coordinate these puppet machines to forge data and send illegal requests to paralyze the target host. This resulted in the leakage of a large number of users' personal information and brought economic losses to many companies. The existing DDoS attack detection is mainly aimed at the architecture of the traditional network, while the software-defined network is a new network architecture that is currently emerging, which realizes the separation of the network control plane and the data plane, and has advan...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06G06N3/08G06N3/04G06N3/00
CPCH04L63/1416H04L63/1458G06N3/006G06N3/084G06N3/045
Inventor 路雪韩德志俞云萍王军毕坤潘楠楠
Owner SHANGHAI MARITIME UNIVERSITY
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com