CONFERENCE PROCEEDINGS
Advanced Search
Home > Proceedings > Volume 12714 > Article
Paper
26 June 2023 Dynamic moving target defense strategy based on adaptive port hopping in SDN
Fangfang Dang, Kehe Wu, Shuai Li, Han Liu, Yifan Song, Xiaoliang Zhang
Author Affiliations +
Proceedings Volume 12714, International Conference on Computer Network Security and Software Engineering (CNSSE 2023); 127141V (2023) https://doi.org/10.1117/12.2683442
Event: Third International Conference on Computer Network Security and Software Engineering (CNSSE 2023), 2023, Sanya, China
Abstract
Distributed Denial of Service (DDoS) is a huge hazard to Software-Defined Networks (SDN). Active defense technology is one of the effective measures to ensure the security of SDN. Active defense can increase the difficulty of the attacker's attack and reduce the probability of being attacked successfully. However, the active defense method based on port hopping has the problems of fixed hopping strategy, lack of flexibility and poor security (for example, it is easy for an attacker to grasp the law of server port hopping). Aiming at these problems, we proposed a Dynamic Moving Target Defense method based on Adaptive Port Hopping (DMTD-APH). The DMTD-APH combines the characteristics of SDN on the basis of port hopping and improves the flexibility of active defense by designing strategies such as hopping synchronization, hopping and forwarding, and adaptive hopping. At the same time, the DMTD-APH dynamically detects the network status through the source address entropy value and data flow rate method and performs time-adaptive or space-adaptive hopping adjustments to ports according to the detection results to build an adaptive active network defense model. The experimental results show that DMTD-APH enhances the anti-attack and service type of the network, and has stronger dynamics and security.
© (2023) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Citation Download Citation
Fangfang Dang, Kehe Wu, Shuai Li, Han Liu, Yifan Song, and Xiaoliang Zhang "Dynamic moving target defense strategy based on adaptive port hopping in SDN", Proc. SPIE 12714, International Conference on Computer Network Security and Software Engineering (CNSSE 2023), 127141V (26 June 2023); https://doi.org/10.1117/12.2683442
ACCESS THE FULL ARTICLE
ORGANIZATIONAL
Sign in with credentials provided by your organization.
INSTITUTIONAL
Select your institution to access the SPIE Digital Library.
SELECT YOUR INSTITUTION
PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.
PERSONAL SIGN IN
No SPIE Account? Create one
PURCHASE THIS CONTENT
SUBSCRIBE TO DIGITAL LIBRARY
50 downloads per 1-year subscription
Members: $195
Non-members: $335 ADD TO CART
25 downloads per 1 - year subscription
Members: $145
Non-members: $250 ADD TO CART
PURCHASE SINGLE ARTICLE
Includes PDF, HTML & Video, when available
Members: $17.00
Non-members: $21.00 ADD TO CART
PROCEEDINGS
 16 PAGES
DOWNLOAD PAPER SAVE TO MY LIBRARY
GET CITATION
Advertisement
Advertisement
RIGHTS & PERMISSIONS
Get copyright permission  Get copyright permission on Copyright Marketplace
KEYWORDS
Defense and security
Network security
Packet switching
Information security
Computer security
Defense technologies
Data communications
RELATED CONTENT
Subscribe to Digital Library
Receive Erratum Email Alert
Back to Top