Research On Adaptive Defense Technology Of DDoS Attack Based On SDN

In recent years,we enjoy efficient and convenient services provided by Internet,while the network security situation is worse and worse,particularly,DDoS(Distributed Denial of Service)attacks ofen occur due to the simple operation and significant effect.While they are not far away from us,everyone in network can be the target or compromised to be a zombie.DDoS attacks mostly occur in the Internet banking,e-commerce,online games and other popular industries,and leading to tremendous loss is worrying.On the other hand,the appearance of SDN(Software Defined Network)bring dawn and hope to the Internet,SDN technology using the open control plane protocol and interface to control and use the underlying network resources by the application.And SDN technology has the characteristics of separation of control layer and data layer,programmable and highly logical control,which can be used to handle many problem in traditional Internet.Today most of the existing defense methods against DDoS attacks are based on static network,there are many limitations in the dynamic allocation of scheduling resources.When the static network environment changes,the network configuration and defense strategy can not be configured easily.Therefore,SDN technology provides a new opportunity for DDoS attack defense.In this paper,we mainly focus on the adaptive defense technology of DDo S attack based on SDN,providing a new idea for DDoS attack detection and defense research,which can improve the accuracy,operability and effectiveness of the adaptive defense.The author analyzes the traditional DDoS attack defense mechanism and SDN based detection methods of some DDoS attacks deeply,meanwhile studies some existing technologies that can be combined with SDN technology for DDoS attack defense,such as sampling and real-time computation and make improvements.Besides the author do the research on IP traceback technology for DDoS attack defense,and classifies and summarizes the existing IP traceback methods and pointing out the insufficient.Based on the analysis of the existing DDoS defense mechanism,the paper proposed a DDoS attack adaptive defense model based on SDN.In particular,the defense in the paper not only means the final defense measure,it means the whole process of automatically and dynamically monitoring,detecting and identifying the attack,and blocking the abnormal traffic.Based on the model a data traceback method is proposed,which is used in DNS defense simulation experiments to test the defense effect and the performance.