Attack stream identification method, apparatus, and device on software defined network
US10382457B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Nov 29, 2016 |
| Grant date | Aug 13, 2019 |
| Priority date | — |
| Expiry date | Oct 18, 2037 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L47/32
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
An attack stream identification method, apparatus, and device on a software defined network is presented, where an invalid stream filter table is stored in a switch, and the method includes the steps of the switch receives a data packet of a data stream and searches, according to a characteristic value of the data packet, the invalid stream filter table for a state field of a filter entry; when the state field is a suspected attack stream state or a non-attack stream state, the switch sends a report message to a controller, determines a rate value for sending the report message to the controller, and fills the rate value in a rate field of the filter entry; and when the rate value is greater than a preset rate threshold, the switch changes the state field of the filter entry to an attack stream state.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.