Wireless network security defense method based on software-defined security

A wireless network and security defense technology, applied in the field of network security, can solve problems such as low protection efficiency and inability to detect network attacks, and achieve the effects of improving protection efficiency, realizing defense automation, and solving low defense efficiency.

Inactive Publication Date: 2019-10-22
ZHEJIANG UNIV
View PDF4 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Existing methods rely on the deployment of network sniffing devices in the network, and cannot detect network attacks outside the scope of deployment; in addition, existing methods often only focus on network monitoring and detection, and cannot perform automated network defense after an attack is detected , the protection efficiency is low in actual deployment

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Wireless network security defense method based on software-defined security

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0021] The present invention will be further elaborated below with a specific embodiment. figure 1 The software-defined security architecture of this embodiment is shown, and the specific description is as follows:

[0022] Wireless access point: In order to ensure the developability of the wireless access point, in this embodiment, the operating system of the wireless access point may adopt an open source operating system. In order to make the wireless access point adapt to the OpenFLow protocol and realize the access of the SDN network, this embodiment uses Open vSwitch (OVS) as the internal bridge of the wireless access point. In addition, a security agent is deployed in the wireless access point. The security agent consists of a communication client and an environment sniffing module. In this embodiment, considering the hardware limitation of the wireless access point, the communication client is a CoAP client, and the communication protocol is a CoAP protocol. The pres...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a wireless network security defense method based on software-defined security. The wireless network security defense method is based on a software-defined secure network architecture and comprises a cloud platform, an SDN controller and a wireless access point. The wireless network security defense method includes the steps: sniffing the network environment data packet in the wireless network by the wireless access point, and uploading the network environment data to the cloud platform in real time; executing the network flow table from the SDN controller to realize network defense; enabling the cloud platform to complete attack detection of the network environment data, generate a defense decision after detecting a network attack, and issue the defense decision tothe SDN controller; and enabling the SDN controller to manage and configure network forwarding equipment including the wireless access point, and issue a network flow table according to the defense decision. According to the invention, attack detection and defense automation and integration under a wireless network are realized, and the protection efficiency is improved.

Description

technical field [0001] The invention relates to a wireless network security defense method, which belongs to the field of network security. Background technique [0002] With the rapid development of the Internet, network and information technology has been more widely used, but it is also accompanied by a larger area and a wider range of network attacks. [0003] The existing detection and defense methods for wireless networks use wireless sniffing devices deployed in the network environment to sniff the environmental data, rely on the expert rule base to detect whether there is an attack on the network environment data, determine the location of the network attack, and then manually or other network tools The network defends. Existing methods rely on the deployment of network sniffing devices in the network, and cannot detect network attacks outside the scope of deployment; in addition, existing methods often only focus on network monitoring and detection, and cannot perf...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04W12/00H04W12/12H04L29/06H04W12/121H04W12/122H04W12/65
CPCH04L63/1416H04W12/65H04W12/121H04W12/122
Inventor 杨帆李荣鹏赵志峰张宏纲
Owner ZHEJIANG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap