| Cyberspace confrontation situation is becoming more and more serious.As fundamental infrastructures,cyber ranges provide network attack and defense and evaluations of new network technologies to enhance stability and security for cyber and information systems,in which traffic reduction technologies has received extensive attention from scholars because of supplying high fidelity network traffic for network attack and defense weapon testing,operator training and competition,and scientific experiments and new technologies verification.Through researches and analysis of traffic reduction methods home and abroad,there is no existing methods of traffic reduction and sequences assurance to map large-scale traffic execution tasks for small-scale virtual topologies.Therefore,this paper proposes an IP address mapping method based on network topologies modeling and a multiple policy-oriented traffic replay method for problems above respectively.Then,a network background traffic reduction system based on multi-node collaboration is designed and implemented.First of all,we illustrate the application scenario using network traffic reduction technologies within the network cyber range and each demand of reduced traffic in different scenarios.Comparing to the existing tools in terms of network traffic fidelity and observing the result in different scenarios is low.As a result,functional and non-functional requirements of traffic reduction systems are summarized for different roles of users and application scenarios,furthermore their overall business process is abstracted.Then,this paper proposes a network topologies modeling-based IP mapping method to solve the problem of cutting,scheduling and assigning network traffic.To ensure high-fidelity network scenarios,a coloring algorithm and a hierarchical search algorithm is applied to model reality and virtual network topologies.the IP mapping method based on Greedy strategy is apply for enhancing the capacity of traffic reduction in the limits of computing resource.Furthermore,for different scenarios with different evaluation of traffic replay accuracy,a multi-node traffic replay method based on reliable transmission strategy and time series consistency strategy is designed.The first strategy is designed by optimizing the process of retransmission time and content,and the last is implemented by calculating and adjusting the error of sending time.A network background traffic reduction system based on multi-node collaboration is implemented with the support of theoretical analysis and experimental results.The system includes a traffic capture module,a configuration management module,a big-scale traffic processing module and a multi-node collaboration traffic replay module.Systematic function test proves that the implemented system can meet functional demands of network cyber range within the network traffic reduction. |
PDF Full Text Request