Cooperative defense of DDoS attack based on machine learning in SDN

被引：0

作者：

Shang L. ^{[1
]}

Chen M. ^{[1
]}

Zhang L. ^{[1
]}

Liu X. ^{[1
]}

Shi T. ^{[2
]}

Li B. ^{[2
]}

机构：

[1] Information and Communication Branch of State Grid Hebei Electric Power Co., Ltd., Shijiazhuang

[2] North China Electric Power University, Baoding

来源：

Dianli Xitong Baohu yu Kongzhi/Power System Protection and Control | 2021年 / 49卷 / 16期

基金：

中国国家自然科学基金;

关键词：

Convolutional neural network; Intrusion detection; Machine learning; Network security; Software defined network;

D O I：

10.19783/j.cnki.pspc.201261

中图分类号：

学科分类号：

摘要：

There is an ever increasing number of services in the power system, and the traditional network architecture lacks an overall view and its control ability is not strong. The Software Defined Network (SDN) is an emerging network architecture. The application of SDN in a power system can change the static pattern of the previous power communication network and realize a real smart grid. However, the architecture of SDN is vulnerable to Distributed Denial of Service (DDoS) threats. A combination of convolutional neural network and Support Vector Machine (SVM) is used to detect attacks. Based on the features of global management of an SDN controller, the association features between adjacent switches are extracted by the controller, so that switches can cooperate in operation and detection efficiency and accuracy can be improved. In addition, a lightweight network monitoring system based on Influxdb and Grafana is designed for real-time observation of network security. A large number of data sets are obtained by simulating attacks and normal traffic, and comparing with other detection methods. The results show that the model has a higher detection rate and a lower false alarm rate, and the data can also be uploaded to the monitoring system in real time to provide managers with a view of the whole network, making the management of the network more convenient. © 2021 Power System Protection and Control Press.

引用

页码：170 / 176

页数：6

共 26 条

[1] HE Fenglu, CHEN Jiaqi, LI Qinhao, Et al., Application and development of internet of things in smart grid, Power System Protection and Control, 48, 3, pp. 58-69, (2020)
[2] SUN Yi, HUANG Ting, CUI Xiaoyu, Et al., Ubiquitous power internet of things from the perspective of internet, Journal of Electric Power Science and Technology, 34, 4, pp. 3-12, (2019)
[3] CHEN Haoyong, LI Zhihao, CHEN Yongbo, Et al., Ubiquitous power internet of things based on 5G, Power System Protection and Control, 48, 3, pp. 1-8, (2020)
[4] CUI Hengzhi, JIANG Chengling, MIAO Weiwei, Et al., Design and implementation of power intelligent iot system based on edge computing, Electric Power Information and Communication Technology, 18, 4, pp. 33-41, (2020)
[5] GREENBERG A, HJALMTYSSON G, MALTZ D A, Et al., A clean slate 4D approach to network control and management, ACM SIGCOMM Computer Communication Review, 35, 5, pp. 41-54, (2005)
[6] WANG Zheng, WANG Haiyong, SONG Beiping, Research on network architecture of power data center based on SDN, Electric Power Information and Communication Technology, 18, 3, pp. 64-69, (2020)
[7] WANG Mengmeng, LIU Jianwei, CHEN Jie, Et al., Software defined networking: security model, treats and mechanism, Journal of Software, 27, 4, pp. 969-992, (2016)
[8] XU Y., A review of cyber security risks of power systems: from static to dynamic false data attacks, Protection and Control of Modern Power Systems, 5, 3, pp. 190-201, (2020)
[9] DAN G., US service provider survives the biggest recorded DDoS in history
[10] ASHRAF J, LATIF S., Handling intrusion and DDoS attacks in software defined networks using machine learning techniques, Proceedings of the 2014 National Software Engineering Conference, pp. 55-60, (2014)

← 1 2 3 →