Check patentability & draft patents in minutes with Patsnap Eureka AI!

LDoS attack detection and mitigation method based on ET-EDR in SDN

A technology of ET-EDR and attack detection, which is applied to electrical components, transmission systems, etc., and can solve problems such as lack of LDoS attacks

Active Publication Date: 2021-05-11
HUNAN UNIV
View PDF7 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

At present, there is a lack of related work on LDoS attacks aimed at congestion control mechanisms in SDN. Therefore, it is necessary to study the detection and mitigation of LDoS attacks based on congestion control in SDN.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • LDoS attack detection and mitigation method based on ET-EDR in SDN
  • LDoS attack detection and mitigation method based on ET-EDR in SDN
  • LDoS attack detection and mitigation method based on ET-EDR in SDN

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0037] The present invention will be further described below in conjunction with the accompanying drawings.

[0038] like image 3 As shown, the ET-EDR-based LDoS attack detection and mitigation method in this SDN mainly includes four steps: information collection, feature calculation, attack detection and attack mitigation.

[0039] Figure 1 is a comparison diagram of network traffic characteristic values ​​in two network states. Under normal network conditions: the average value of TCP traffic is high, accounting for most of the total traffic, and the coefficient of variation is low. At the same time, the Spearman rank correlation coefficient between TCP traffic and total traffic is high, close to 1; UDP traffic The mean is lower and the coefficient of variation is also lower. In the state of LDoS attack: the average value of TCP traffic is low, while TCP traffic occupies a small part of the total traffic, the coefficient of variation is higher than that under normal netwo...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses an LDoS attack detection and mitigation method based on ET-EDR in an SDN, and belongs to the field of network security. The method comprises the following steps: acquiring an aggregation flow message in a key switch in real time at a fixed sampling interval, dividing the aggregation flow message into time windows according to a fixed time length and step length, and calculating a six-dimensional characteristic value of flow data in the time windows; according to the characteristic values of the traffic data in the time windows, classifying the time windows based on an ET model obtained by training in advance to obtain a classification result; if the number of the real-time windows which are classified to be subjected to the LDoS attack is greater than a preset threshold value, considering that the current network is subjected to the LDoS attack; an EDR algorithm is used to locate an attacked switch port, and a controller is used to issue a flow rule to complete the relief of the LDoS attack. According to the LDoS attack detection and mitigation method based on the ET-EDR in the SDN provided by the invention, the LDoS attack in the SDN can be accurately detected and mitigated in real time.

Description

technical field [0001] The invention belongs to the field of computer network security, and in particular relates to an ET-EDR-based LDoS attack detection and mitigation method in SDN. Background technique [0002] SDN (Software Defined Networking) is a new type of network architecture that simplifies the functions of the data plane and separates the control functions so that the data plane only provides basic packet forwarding. The basic architecture of SDN is mainly divided into three planes: application plane, control plane and data plane. The application plane contains various applications and services. The control plane manages SDN applications and also manages flow forwarding in switches. The data plane consists of different types of forwarding devices. The northbound interface between the application plane and the control plane provides an API (Application Programming Interface, Application Programming Interface) for developers. The southbound interface between th...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
CPCH04L63/1416H04L63/1458
Inventor 汤澹陈静文王曦茵代锐张斯琦郑思桥
Owner HUNAN UNIV
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com