Implementation architecture of mimic security defense based on SDN

Implementation architecture of mimic security defense based on SDN

To deal with the attacks employing unknown security vulnerabilities or backdoors which are difficult for traditional defense techniques to eliminate,mimic security defense (MSD) that employs “dynamic,heterogeneity,redundancy (DHR)” mechanism can increase the difficulty and cost of attack and uncerta...

Full description

Saved in:
Bibliographic Details
Main Authors: Zhen-peng WANG, Hong-chao HU, Guo-zhen CHENG, Chuan-hao ZHANG
Format: Article
Language:English
Published: POSTS&TELECOM PRESS Co., LTD 2017-10-01
Series:网络与信息安全学报
Subjects:
mimic security defense
software defined networking
active defense
dynamic heterogeneous redundancy
Online Access:http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2017.00205
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:To deal with the attacks employing unknown security vulnerabilities or backdoors which are difficult for traditional defense techniques to eliminate,mimic security defense (MSD) that employs “dynamic,heterogeneity,redundancy (DHR)” mechanism can increase the difficulty and cost of attack and uncertainty of system so as to improve network security.Based on the software defined networking (SDN),an implementation architecture of MSD was proposed.First,diverse functional equivalent variants for the protected target were constructed,then leverage the rich programmability and flexibility of SDN to realize the dynamic scheduling and decision-making functions on SDN controller.Simulation and experimental results prove the availability and the intrusion tolerant ability of the architecture.
ISSN:2096-109X

Similar Items