• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>International Conference on Current Trends in Computer, Electrical, Electronics and Communication >Combating DDoS Attack with Dynamic Detection of Anomalous Hosts in Software Defined Network
【24h】

Combating DDoS Attack with Dynamic Detection of Anomalous Hosts in Software Defined Network

机译:用动态检测软件定义网络中的异常主机的动态检测对抗DDOS攻击

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

This paper proposes a Distributed Denial of Service (DDoS) attack detection and defense system based on Software Defined Networks (SDN) architecture. The system is composed of a monitoring module, a detection module and a reaction module. The monitoring module is designed to raise alerts by analyzing Packet_In messages. It detects and reports anomalies to the detection module for further evaluation, which overcomes the disadvantages of slow response and large overhead of periodic trigger detection. The reaction module can trace back attack traffic flows to quickly and accurately identify malicious hosts. The use of a SDN controller brings in a global view of the network topology in the monitoring and detection procedures for the access layer switch and reduces the processing range. This paper extends the OpenFlow protocol so that a flow entry can record and track the flow path information, which improves the efficiency and accuracy of attack traffic traceability. Simulation experiments show that the proposed scheme has a relatively faster response to DDoS attack with less processing pressure imposed on the controller.
机译:本文提出了一种基于软件定义网络(SDN)架构的分布式拒绝服务(DDOS)攻击检测和防御系统。该系统由监视模块,检测模块和反应模块组成。监控模块旨在通过分析Packet_in消息来提高警报。它检测并向检测模块检测并报告异常以进行进一步评估,这克服了慢响应和周期触发检测的较大开销的缺点。反应模块可以追溯攻击交通流快速准确地识别恶意主机。使用SDN控制器在接入层交换机的监控和检测过程中的全局视图中提出了网络拓扑的全局视图,并减少了处理范围。本文扩展了OpenFlow协议,以便流入流程可以记录和跟踪流路信息,从而提高攻击流量可追溯性的效率和准确性。仿真实验表明,该方案对DDOS攻击的响应相对较快,施加在控制器上较少的处理压力。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号