摘要
设计并仿真实现了一种基于安全博弈的SDN数据包抽检策略,以优化SDN数据包抽检问题中的网络安全资源配置.将SDN数据包抽检问题建模成攻防双方参与的零和安全博弈;根据网络节点重要性量化网络节点收益值以确定攻防双方收益;通过对上述安全博弈模型求解得到防御者的均衡策略,即为有限安全资源约束下最优的SDN数据包抽检策略.仿真结果表明,提出的基于安全博弈的SDN数据包抽检策略是有效的.
In order to optimize the allocation of network security resources,an SDN packet sampling detection strategy based on security game was devised and simulated.The SDN packet sampling detection problem was modeled as a zero-sum security game with players as defender or attacker.Payoff of network nodes was quantified according to their importance thus to determine players′payoff.The equilibrium strategy of defender was obtained by solving the security game model mentioned above,which was the optimal SDN packet sampling strategy within the context of limited security resource constraints.Simulation proved that the proposed SDN packet sampling strategy based on security game was effective.
作者
张伟丽
王兴伟
张爽
黄敏
ZHANG Weili;WANG Xingwei;ZHANG Shuang;HUANG Min(Software College,Northeastern University,Shenyang 110000,China;College of Information Science and Engineering,Northeastern University,Shenyang 110000,China)
出处
《郑州大学学报(理学版)》
CAS
北大核心
2018年第1期15-19,共5页
Journal of Zhengzhou University:Natural Science Edition
基金
国家自然科学基金项目(61572123)
国家杰出青年科学基金项目(71325002)