摘要
针对云环境下传统安全设备难以采集东西向流量且现有SDN方案采集效率低的问题,提出一种基于SDN的高效流量监控方案,通过控制器应用自适应的频率调节算法对东西向流量采样并检测分类,随后分级别地响应流表策略,放行可被识别的流量,完成对流量进行牵引至软件安全检测系统前的预处理,减小待牵引流量的规模。对比实验结果表明,所提方案能在不影响SDN控制器性能的前提下,降低安全控制信道的负载,能使安全检测系统保持较高的检测率。
In a cloud environment,it is difficult to collect east-west traffic using traditional security devices and existing SDN-based methods are inefficient.To solve these two defects,an efficient traffic monitoring scheme based on SDN was proposed.The east-west traffic was sampled and classified using self-adapting frequency adjustment algorithm.According to different levels,flow table rules were forwarded to pull traffic to the software security detection system to release the identifiable traffic and reduce the scale of traffic.Experimental results show that the proposed scheme can reduce the load of the security control channel and maintain a high detection rate of software security detection system without affecting the performance of the SDN controller.
作者
刘世嘉
王勇
刘玉明
LIU Shi-jia;WANG Yong;LIU Yu-ming(School of Computer Science and Information Security,Guilin University of Electronic Technology,Guilin 541004,China;Guangxi Colleges and Universities Key Laboratory of Cloud Computing and Complex Systems,Guilin University of Electronic Technology,Guilin 541004,China;Guangxi Cooperative Innovation Center of Cloud Computing and Big Data,Guilin University of Electronic Technology,Guilin 541004,China)
出处
《计算机工程与设计》
北大核心
2020年第2期307-312,共6页
Computer Engineering and Design
基金
国家自然科学基金项目(61861013、61662018)
广西科技重大专项基金项目(桂科AA18118031)
广西科技计划基金项目(桂科攻1598019-2)
广西教育厅基金项目(201204LX106、2017KY0205)
广西研究生教育创新计划基金项目(2018YJCX53)
广西高等教育本科教学改革工程基金项目(2016JGA219)