Research On End Hopping And Spreading Based On SDN

The Internet has brought great convenience to people’s life.But because of the openness of the network itself,the network security problem is becoming more and more serious.Traditional static network defense has been unable to adapt to the varied means of attack.Active network defense has become a new direction in the field of network security,while the traditional network architecture is difficult to adapt to the complex network defense requirements.Therefore,this dissertation combined with the software-defined network,studied the mechanism of end information jump and expansion,explored the mixed mechanism of end information jump and expansion based on software-defined network,and proposed the mixed model of end information jump and expansion based on software-defined network.Aiming at the characteristics of difficult deployment and poor flexibility of traditional jump technology,based on the new network architecture of SDN,this dissertation proposes a hybrid active defense model of terminal information jump and spread based on SDN and gives a formal description of it.The model in this dissertation is mainly divided into two modules.One is the algorithm of generating the extended sequence of terminal information based on SDN.By generating the extended sequence in the SDN controller and adding it to the authentication packet,the server side carries out the extended sequence authentication on the authentication packet at the same time,and has obtained the right of service access.Others to jump the information strategy based on SDN,packet in the transmission in the process of certification,the certification by random jump algorithm to randomly change the port address information,and to hide the key information,make traffic diversified and complicated,prevent the attacker by hacking attacks,intercept attack traffic analysis,get the real information.By introducing the weight factor and the randomization address algorithm,the adaptability and randomness of the system are improved to ensure the network security.This dissertation proposes and implements a hybrid prototype system of terminal information jump and expansion based on SDN,and builds an experimental environment through a virtual machine and tests it.The experimental results show that the proposed model can effectively implement the sequence information jump strategy and the extension of the generated,forward,and authentication,the information of the jump and sequence extension certification can significantly improve the concealment of information,to hide the host information,effective defensive hacking attack and attack to intercept,has high concealment,improved the security of the network.It proves that the mixed mechanism of terminal information jump and spread based on SDN proposed in this dissertation can effectively improve network security performance.