Research On Traceback And Traffic Control Technology For DoS Attack In SDN

Software-Defined Networking(SDN)is a network architecture that separates the control and forwarding functions within network devices.It utilizes a centralized controller with a global view of the network to manage and control network operations,providing flexible network services and efficient network management.However,the centralized control of SDN makes it vulnerable to Denial of Service(DoS)attacks.To effectively counter DoS attacks,it is crucial to identify the source of the attacks and implement mitigation measures at the attack source.By preventing attack traffic from entering the network,the impact of DoS attacks on the overall network can be significantly reduced.However,attackers usually use forged source address to send attack traffic,so it is impossible to locate the attacker solely based on source address.For the problem that it is difficult to trace the source of DoS attacks in SDN,this thesis studies the existing path reconstruction technology,proposes the traceback technology based on traffic audit,implements traffic control according to the traceability results,and designs and implements the traceback and traffic control system of DoS attacks.The research content and contributions of this study mainly include:(1)This thesis proposes a traceback technology based on traffic audit.The flow is stored on the data plane,and when an attack occurs,the control plane uses the stored information and network topology to reconstruct the attack path,and locate the source of the attack.In order to reduce storage overhead,the flow is stored based on the Bloom Filter.When a collision occurs,the Bloom filter is refreshed to improve the accuracy of source tracing.The experimental results show that traceback technology based on traffic audit improves accuracy of the traceback and reduces network overhead.(2)This thesis proposes a traffic control technology combining blocking and rate limiting.According to the traceback results,implement traffic control on the ingress port where the attacker accesses the network.This thesis uses a traffic control strategy combining flow blocking and flow rate limiting to mitigate DoS attacks.The experimental results show that traffic control measures can effectively mitigate DoS attacks.(3)This thesis designs and implements a DoS attack traceback and traffic control system.The system implements the functions of attack source tracing and attack mitigation,including traffic recording module based on the BF,traffic query module based on the BF,query request module,query response module,path reconstruction module and traffic control module.