摘要
为解决已有地址跳变技术时延高、效率低、不能区分通信业务类型的问题,在软件定义网络环境下提出一种基于业务感知的地址跳变方法。针对子网IP分段连续的特点,采用高效的随机地址生成算法使地址跳变技术更高效。同时使用通信认证算法,根据通信双方的架构和业务可靠性要求来提供不同的跳变模式。实验结果表明,相比OF-RHM、PPAH-SPD方法,该方法能够有效保证通信双方免受嗅探攻击,取得更高效灵活的随机地址跳变效果和地址跳变模式,降低30%~60%的时延并减少抖动。
In order to solve the problem of high delay,low efficiency and indistinguishes communication service types in the existing address mutation technology,a service awareness based address mutation method is proposed in the SDN environment.With the feature of subsection IP continuous segmentation,an efficient random address generation algorithm is adopted to make the address mutation technology more efficient.At the same time,a communication authentication algorithm is used to provide different mutation modes according to the architecture and reliability requirements of both sides.Experimental results show that,compared with the OF-RHM and PPAH-SPD method,this method can effectively guarantee the communication parties from the sniffer attack,provide more efficient and flexible address random mutation effect and address mutation mode,reduce the time delay of 30%~60%and reduce the jitter.
作者
谷允捷
胡宇翔
丁悦航
谢记超
GU Yunjie;HU Yuxiang;DING Yuehang;XIE Jichao(National Digital Switching System Engineering and Technological R&D Center,Zhengzhou 450002,China)
出处
《计算机工程》
CAS
CSCD
北大核心
2018年第10期28-33,41,共7页
Computer Engineering
基金
国家重点研发计划(2017YFB0803201)
上海市科学技术委员会科研计划项目(16DZ1120503)
河南省科技攻关计划项目(162102210034)
关键词
网络安全
随机地址跳变
业务感知
可靠性要求
时延
network security
random address mutation
service awareness
reliability requirements
time delay