| With the widespread application of network applications in daily life,the vulnerabilities and attacks on the network are increasing.Network security has also become an important research topic in the field of the computer network.Flooding attacks are a new type of distributed denial of service(DDoS)attacks that can interfere with or even interrupt network services in the target area by blocking key links in the network,which have triggered academia and industry increasing attention.This paper starts from the software defined network(SDN),combined with the technology of segmented routing and moving target defense,studies SDN-oriented flooding attack defense and recovery mechanism,which is of great significance to the protection of network security.Firstly,it analyzes and expounds the flooding attack and its security threat,evaluates the current situation of flooding attack defense research,analyzes the basic theory of flooding attack defense,analyzes and explains the characteristics and advantages of software defined network,which lays the foundation for the follow-up research of this paper.A rerouting scheme for flooding attacks is designed.Based on the analysis of the flooding attack model,a network model based on the relational ordinal set is proposed to monitor the relationship between communication service and its passing links and nodes.A rerouting trigger mechanism is designed,and a segmented routing algorithm is proposed to divert traffic from congested links and reduce the burden on key links.Secondly,a flooding attack defense and early warning mechanism is proposed.An SDN-oriented flooding attack defense mechanism architecture is designed to implement intelligent flow control strategies through the coordination between modules to realize intelligent flow distribution and control.A dynamic response and early warning model is constructed to globally monitor data traffic and network links,collect and warn of link congestion caused by flooding attacks,make rerouting adjustments in time,and provide early warning of attacks before rolling attacks are launched to minimize the possibility of network communication interruption due to untimely rerouting.The simulation results and analysisshow that the flooding attack defense and recovery mechanism can effectively prevent flooding attack without a lot of network monitoring and configuration overhead.Finally,a network recovery and management mechanism is proposed,and a moving target defense architecture model is designed to adjust the network plane under flooding attacks to alleviate network problems caused by flooding attacks.A machine learning-oriented traffic monitoring model is constructed.Lightweight detection methods are used to quickly detect abnormal changes in traffic,restore link communication conditions in a timely manner,and achieve effective network management.The source of attacks can be located after multiple rounds of rerouting.Simulation results and analysis show that the network recovery and management mechanism can quickly respond to flooding attacks,alleviate network congestion in time,and effectively ensure that normal network service requests are not interrupted. |
PDF Full Text Request