발간년도 : [2017]
논문정보 |
|
논문명(한글) |
[Vol.12, No.3] Establishment of Testbed for Detection of Harmful Traffic in SDN-based Network |
|
논문투고자 |
Jung Yun KIM |
|
논문내용 |
SDN-based networks have many advantages over existing networks. SDN is different from existing network configuration It is a method of delivering packets based on software functions in network equipment, which has many advantages in terms of cost and operation over existing network structure. However, since it is built around OpenFlow, which is the most widely known interface in SDN, it is also vulnerable to security. So SDN tried to solve this by providing virtualized security function based on NFV(Network Function Virtualization). The advantage of NFV is that it is possible to apply security only to the place where security is needed by using controller without need to set up like existing equipment. In this paper, I tried to investigate a method to filter harmful traffic without the ACL(Access Control List), ZFW(Zone-Based Firewall) and other functions set in the security device in the NFV that operates for security in the SDN environment. The hardware-based security technologies currently used are inevitably subject to delays and can not be used to prevent security attacks that are executed in various ways by changing port numbers. Therefore, the purpose of this paper is to improve the security performance of SDN based on NFV by analyzing traffic pattern and filtering harmful traffic and nontoxic traffic. For this study, a test network based on actual SDN was constructed and the pattern - based harmful traffic detection technology was proved. |
|
첨부논문 |
|
|
|
|
|