Research On Network Security Technology Based On NFV

With the rapid development of network applications and network technologies,the Internet is facing more and more serious security threats.The theory and technology of network security have received continuous attention and researches.At the same time,Network Function Virtualization(NFV)technology with the characteristics of flexible sharing of resources,rapid development and deployment of new services has received extensive attention from the industry and academia.It is an area worth exploring to use the characteristics of NFV to promote the development of network security technology in network security research.This thesis further investigates some network security challenges that have not yet been fully resolved,such as Low-Rate Distributed Denial of Service(LDDoS)attacks,network anomaly detection and localization,and network topology measurement and evaluation.Explore the technical approach to deepen the research of network security technology by introducing NFV technology.The main work and contributions of this thesis are as follows:(1)Conducting an in-depth theoretical analysis of the new network attack method LDDoS,an experimental verification method of LDDoS attack based on NFV is proposed,and the parameters and conditions for launching the attack are given.The experimental results of prototype system show that the LDDoS attack has limited effectiveness,and it is difficult to lanuch an effective LDDoS attack in the actual Internet environment.(2)Aiming at the current situation that it is difficult to detect and localizate multiple anomalies in the network,this thesis proposes an RTT measurement matrix model and a matrix differential decomposition(MDD)-based Anomaly Detection and Localization(MADEL)algorithm for NFV networks.A prototype system for verifying the algorithm was designed and implemented in the NFV network.The experimental results show that MADEL algorithm can effectively detect and localize multiple network anomalies.(3)Considering the problems of Internet topology measurement and evaluation,a method of topology detection and discovery based on the NFV network platform was proposed,then,a strategy based on Analytic Hierarchy Process for evaluating detection ability was designed.Finally,implementing a prototype system based on NFV and experimental results verify the feasibility of the method.