Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

A detection method of ddos ​​attack in sdn network based on optimized bp neural network

A BP neural network, attack detection technology, applied in the field of DDoS attack detection, can solve the problems of long training time, the algorithm does not get the optimal solution, the comprehensiveness of judgment is not enough, etc., to achieve the effect of improving the detection accuracy

Active Publication Date: 2022-08-02
SHANGHAI MARITIME UNIVERSITY
View PDF7 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, because the control plane and the data plane are decoupled, when the connection between the switch and the controller fails, the network will lose control. Therefore, the security of the controller is one of the security guarantees of the entire SDN network, and DDoS attacks are the security of the controller. One of the threats, how to detect accurate DDoS attacks is critical to SDN security
[0003] In the existing methods, although a large number of effective DDoS attack detection methods are proposed, they only use the interactive characteristics of the network flow, and the comprehensiveness of the judgment is not enough, or the convergence speed of the detection model is slow, the training time is long, and the algorithm used has not been optimized. Excellent solution, low accuracy of detection results

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A detection method of ddos ​​attack in sdn network based on optimized bp neural network
  • A detection method of ddos ​​attack in sdn network based on optimized bp neural network
  • A detection method of ddos ​​attack in sdn network based on optimized bp neural network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0079] The technical solution of the present invention will be described in detail below, but the protection scope of the solution is not limited to the embodiments.

[0080] The present invention will be further described below with reference to the embodiments and accompanying drawings.

[0081] like figure 1 As shown, an SDN network DDoS attack detection method based on an optimized BP neural network includes the following steps:

[0082] Step 1. The flow table collection module inside the SDN (Software Defined Network) controller periodically sends a flow table request to the OpenFlow switch, and the periodic acquisition time interval is T (T in the example is 3 seconds); the OpenFlow switch passes the flow table information through. The secure channel is sent to the feature extraction module within the SDN controller.

[0083] Among them, the OpenFlow switch is responsible for forwarding data packets according to the flow table in the SDN network, which consists of the ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention proposes a DDoS attack detection method for SDN network based on optimized BP neural network, which comprehensively extracts six characteristic values ​​related to DDoS in the flow table in the SDN network environment, source IP address growth rate GSIP, flow survival time change ADF , convection ratio PPF, port growth rate GSP, flow entry rate RFE, flow matching success rate RFM; reduce the load of SDN network by setting trigger threshold, optimize BP neural network with particle swarm algorithm, and use the characteristics of particle swarm optimization global optimization , select the mean square error of the BP neural network as the fitness function of the particle swarm algorithm, and select the best fitness value as the threshold and weight of the BP neural network, so as to avoid the slow convergence speed of the BP neural network when it solves the optimal solution and fall into Local optimal solution, and improve detection accuracy.

Description

technical field [0001] The invention relates to a DDoS attack detection technology, in particular to an SDN network DDoS attack detection method based on an optimized BP neural network. Background technique [0002] Distributed Denial of Service (DDoS) attacks are one of the main threats facing the current Internet. DDoS attack initiators first exploit the vulnerabilities of Internet users to collect a large number of puppet machines, and then coordinately schedule these puppet machines to forge data and send illegal requests to paralyze the target host. This resulted in the leakage of personal information of a large number of users and brought economic losses to many enterprises. The existing DDoS attack detection is mainly aimed at the traditional network architecture, while the software-defined network is a new type of network architecture that has emerged. certain advantages. However, because the control plane and data plane are decoupled, when the connection between ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40G06N3/08G06N3/04G06N3/00
CPCH04L63/1416H04L63/1458G06N3/006G06N3/084G06N3/045
Inventor 路雪韩德志俞云萍王军毕坤潘楠楠
Owner SHANGHAI MARITIME UNIVERSITY
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com