Paper
15 October 2021 Flow count synchronous SDN address hopping technology based on DH-RSA negotiation
Weizhen Lou, Hailong Li, Kaiyu Hu, Min Liu, Qingjiang Dong
Author Affiliations +
Proceedings Volume 11933, 2021 International Conference on Neural Networks, Information and Communication Engineering; 1193315 (2021) https://doi.org/10.1117/12.2615099
Event: 2021 International Conference on Neural Networks, Information and Communication Engineering, 2021, Qingdao, China
Abstract
This paper proposes an SDN address hopping algorithm based on flow count synchronization to defend against DDoS attacks. The controller and the client use the DH algorithm to negotiate to generate a hopping address pool, and use RSA to verify the legitimacy of the negotiating parties, ensuring the security of the hopping address pool, and solving the problem that the hopping pattern is easily intercepted and cracked. The flow count is used as an address hopping trigger condition, and the address hopping is selected according to the number of data packets sent in the network, which can quickly respond to large-flow DDoS attacks. Experiments have verified the effectiveness of its defense against DDoS attacks.
© (2021) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Weizhen Lou, Hailong Li, Kaiyu Hu, Min Liu, and Qingjiang Dong "Flow count synchronous SDN address hopping technology based on DH-RSA negotiation", Proc. SPIE 11933, 2021 International Conference on Neural Networks, Information and Communication Engineering, 1193315 (15 October 2021); https://doi.org/10.1117/12.2615099
Advertisement
Advertisement
RIGHTS & PERMISSIONS
Get copyright permission  Get copyright permission on Copyright Marketplace
KEYWORDS
Defense and security

Network security

Information security

Computer security

Network architectures

Protactinium

Switches

Back to Top