Patent
Method and system for preventing blind DDoS attacks on SDN controllers
Reads0
Chats0
TLDR
In this article, the authors proposed a method and system for preventing blind DDoS attacks on SDN controllers, which comprises an SDN controller resource pool monitor, a controller list dynamic switching module deployed on an SDNs switch and an attack detection application module, and the controllers carry out data interaction through data interfaces.Abstract:
The invention relates to a method and system for preventing blind DDoS attacks on SDN controllers. The system comprises an SDN controller resource pool monitor, a controller list dynamic switching module deployed on an SDN switch and an attack detection application module, and the attack detection application module and the controllers carry out data interaction through data interfaces. The SDN controller resource pool monitor is used for maintaining the establishment of a plurality of physical machine and/or virtual machine controllers, data synchronism, IP address distribution and state lists to be issued to the switch. The attack detection application module detects the communication data streams of the controllers and the switch in an SDN network, and when blind DDoS attack streams on the controllers are detected, the SDN controller resource pool monitor dynamically adjusts the number of the controllers according to attack flow generated when the blind DDoS attacks occur. The method can dynamically adjust the number of the controllers, the blind DDoS attacks on the controllers can be effectively prevented, and the usability of the SDN network is guaranteed.read more
Citations
More filters
Patent
SDN network DDoS attack detecting method based on network layer flow abnormity
TL;DR: In this paper, the authors proposed an SDN network DDoS attack detection method based on network layer flow abnormity in order to detect and process a DDoS attacks in a SDN Network according to the network layer Flow abnormity, which comprises steps of: getting access to an OpenFlow switch flow table information items by using a network controller, acquiring a communication flow characteristic reaching the Open Flow switch; and analyzing and processing the acquired detection characteristic by using introduced information entropy and single-side connection density in order, obtaining a training and detection characteristic element group.
Patent
Moving target defense system and moving target defense method for SDN (self-defending network)
TL;DR: In this article, a moving target defense system for an SDN (self-defending network) is described, which consists of a target conversion module, an encryption transmission module, a load balance module, safety authentication module, business flow recording database and mapping information recording database.
Patent
DDoS attack distributed detection and response system and method based on information entropy
TL;DR: In this article, a DDoS attack distributed detection and response system and method based on information entropy has been proposed, which has the advantages of being fast in detection speed, high in detection precision rate, rapid in attack response, and small in resource burden.
Patent
SDN (software defined network) framework, system and working method combining DDoS (distributed denial of service) threat filtering and routing optimization
TL;DR: In this article, a software defined network (SDNets) framework, system and working method combining DDoS (distributed denial of service) threat filtering and routing optimization is presented.
Patent
Method for implementing abnormal traffic interception based on SDN
TL;DR: In this article, the authors proposed a method and a system for implementing abnormal traffic interception in SDN networks, which mainly comprises the following steps: extracting abnormal traffic characteristic information in a network, developing an appropriate traffic interception policy according to the abnormal traffic characteristics, and transmitting the traffic interceptation policy to an SDN (Software Defined Network) controller.
References
More filters
Patent
System and method for distributed denial of service identification and prevention
TL;DR: In this article, an information layer agent consults a knowledge base comprising information associated with known attack patterns, including state-action mappings, to determine if events indicate attacks, perform clustering analysis to determine whether they represent known or unknown attack patterns and initiate appropriate responses to prevent and/or mitigate the attack.
Patent
Detecting method of DDOS (distributed denial of service) attacks
TL;DR: In this article, a method of detecting DDOS (distributed denial of service) attacks, belonging to the field of computer network safety and comprising the steps that, (1) a data packet interception module is used for analyzing accessed network data packet information; (2) data packet feature statistic module was used for counting the analyzed network data packets information; and (3) a statistical data processing module, used for computing the proportional distribution of all kinds of data packets relative to the total number of the data packets at unit time.
Patent
Method and associated device for message processing
Liu Zhenxiao,Teng Xindong +1 more
TL;DR: In this paper, a pre-judging table is used for judging whether a reverse flow has a match item or not in a global reverse network address translation (NAT) flow table according to feature information of the reverse flow.