首页|期刊导航|计算机应用研究|SDN中面向流表溢出攻击检测的网络遥测调度方法

SDN中面向流表溢出攻击检测的网络遥测调度方法

邓笛崔允贺申国伟郭春陈意钱清

计算机应用研究2024，Vol.41Issue(11)：3464-3470,7.

计算机应用研究2024，Vol.41Issue(11)：3464-3470,7.DOI:10.19734/j.issn.1001-3695.2024.03.0075

SDN中面向流表溢出攻击检测的网络遥测调度方法

Network telemetry scheduling method for detecting flow table overflow attacks in SDN

邓笛 ¹崔允贺 ¹申国伟 ¹郭春 ¹陈意 ¹钱清²

作者信息

1. 贵州大学公共大数据国家重点实验室,贵阳 550025||贵州大学计算机科学与技术学院文本计算与认知智能教育部工程研究中心贵阳 550025||贵州大学计算机科学与技术学院贵州省软件工程与信息安全特色重点实验室,贵阳 550025
2. 贵州财经大学信息学院,贵阳 550025
折叠

摘要

Abstract

This paper proposed a network telemetry scheduling method,F-Sense INT,aimed at solving the data redundancy issue caused by network telemetry scheduling based on fixed periods or specific event scheduling for detecting flow table overflow attacks.F-Sense INT analyzed the characteristics of flow table overflow attack traffic flows and collected network state information used for detecting such attacks.F-Sense INT decreased telemetry reporting volume while reducing the use of controller resources consumption and southbound channel bandwidth consumption.Experimental results demonstrate that F-Sense INT effectively filters out non-flow table overflow attack flows in the network.It reduces the quantity of telemetry data packets compared to the native OVS system,with only a 1.13％increase in switches CPU utilization and a 4.18％increase in memory usage.F-Sense INT significantly enhances network telemetry efficiency in the context of flow table overflow attack de-tection and offers high practicality.

关键词

网络遥测/流表溢出攻击/数据平面

Key words

network telemetry/flow table overflow attack/data plane

分类

信息技术与安全科学

引用本文复制引用

邓笛,崔允贺,申国伟,郭春,陈意,钱清..SDN中面向流表溢出攻击检测的网络遥测调度方法[J].计算机应用研究,2024,41(11):3464-3470,7.

基金项目

国家自然科学基金资助项目(62102111) （62102111）

贵州省科技计划资助项目(黔科合基础-ZK[2022]重点011) （黔科合基础-ZK[2022]重点011）

贵州省高等学校大数据安全与网络安全创新团队资助项目(黔教技[2023]052号) （黔教技[2023]052号）

计算机应用研究

OA北大核心CSTPCD

ISSN：1001-3695

访问量0

下载量0

段落导航