信息安全研究2024,Vol.10Issue(9):840-848,9.DOI:10.12379/j.issn.2096-1057.2024.09.08
基于多层Sketch的SDN网络流量测量技术研究
Network Traffic Measurement Based on Multi-layer Sketch in SDN
摘要
Abstract
Network traffic measurement for large flow detection,mutation flow detection and base estimation is of great significance for ensuring network security.However,the current related research suffers from the problems of insufficient real-time performance and low measurement accuracy.In response to the above issues,this paper designs a network traffic measurement model based on Multiple Layer Sketch(ML Sketch).First,the model adopts an independently designed ML Sketch structure,which uses a categorized storage structure to improve the accuracy of traffic measurement.Second,we simulate the dynamic occurrence scenarios of traffic in SDN(Software Defined Network)environment using real-time traffic playback technology.Finally,real-time dynamic detection of large,mutating and base estimation classes of traffic is realized in the SDN control plane.The experimental results on UNSW-NB15 show that compared with the traditional Sketch structure,the ML Sketch structure designed in this paper improves the F1_Score metric by up to 4.81%and reduces the correlation error by up to 81.12%,verifying the effectiveness of the model in this paper.关键词
网络测量/SDN/Sketch/流量回放/网络安全Key words
network measurement/SDN(software defined network)/Sketch/traffic replay/network security分类
信息技术与安全科学引用本文复制引用
杨心怡,池亚平,王志强..基于多层Sketch的SDN网络流量测量技术研究[J].信息安全研究,2024,10(9):840-848,9.基金项目
中央高校基本科研业务费专项资金项目(328202275) (328202275)
