摘要
基于SDN(软件定义网络)新型网络架构,研究并实现了恶意域名防护系统。分析了恶意域名防护系统的各功能模块及工作流程。使用Mininet虚拟平台搭建系统网络环境,基于Floodlight控制器开发系统的恶意域名防护模块,通过OpenFlow协议抽象底层网络资源,并开放REST API给上层的恶意域名防护管理器应用。设计了三个循序渐进的实验场景以验证系统的有效性。实验结果表明,基于SDN的恶意域名防护系统能有效防范用户访问恶意域名网站。
Based on the architecture of SDN (software-defined networking), this paper studied and realized the protection system against malicious domain name. And analyzed main functional modules and work flow of the protection system. It constructed environment of network for this system by using Mininet platform. Developed modules of the system based on Floodlight controller which can abstract underlying network resources by OpenFlow protocol and open REST API to upper management application. Finally, this paper verified performance of the system in three step-by-step scenes. Experimental results show that this system can effectively prevent users visiting malicious web sites.
出处
《计算机应用研究》
CSCD
北大核心
2017年第4期1166-1171,共6页
Application Research of Computers
基金
赛尔网络下一代互联网技术创新项目(NGII20150706)
关键词
软件定义网络
OpenFlow
恶意域名
恶意域名防护
software-defined networking
OpenFlow
malicious domain name
protection against malicious domain name