北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2015, Vol. 38 ›› Issue (6): 104-108,119.doi: 10.13190/j.jbupt.2015.06.021

• 研究报告 • 上一篇    下一篇

Openflow下的动态虚拟蜜网系统

胡毅勋, 郑康锋, 武斌, 杨义先   

  1. 北京邮电大学 信息安全中心, 北京 100876
  • 收稿日期:2014-11-27 出版日期:2015-12-28 发布日期:2015-12-28
  • 作者简介:胡毅勋(1988—),男,博士生,E-mail:hyx.bupt@gmail.com;郑康锋(1975—),男,副教授,博士生导师.
  • 基金资助:

    国家自然科学基金项目(61101108)

A Dynamic Virtual Honeynet System Using Openflow

HU Yi-xun, ZHENG Kang-feng, WU Bin, YANG Yi-xian   

  1. Information Security Center, Beijing University of Posts and Telecommunications, Beijing 100876, China
  • Received:2014-11-27 Online:2015-12-28 Published:2015-12-28

摘要:

提出了一种Openflow下的动态虚拟蜜网系统,利用Openflow交换机及其控制器的软件定义网络的新型网络架构,解决现有蜜网系统中流量控制困难的问题,替代现有基于重定向网关的半软件半硬件的转发方案. 设计了一种虚拟蜜罐系统,可以虚拟运行任意服务的任意主机,能够动态调整蜜罐结构. 提出了叠加虚拟蜜网的概念,在一个蜜网物理实体中叠加运行多个不同的虚拟蜜网系统. 部署设计的蜜网系统验证了密网系统转发时延低、动态性强的特性和叠加虚拟蜜网系统的有效性.

关键词: Openflow, 软件定义网络, 蜜网, 叠加虚拟蜜网

Abstract:

A dynamic vitual honeynet system using Openflow is proposed to solve the pain point of traffic control in the current honeynet system. This system is established on software defined network architecture with Openflow switch and controller and replaces the existing semi-software forwarding solution which is based on redirection gateway. A virtual honeypot system is designed to virtualize any host with any services and to adjust the honeypot structure dynamically. A new concept of overlay virtual honeynet which defines running multiple virtual honeynets in one honeynet physical entity is advocated. The experimental results in deployed designed honeynet system verify the low forwarding delay of forwarding scheme based on Openflow, dynamic property of honeynet system, and effectiveness of overlay virtual honeynet system.

Key words: Openflow, software defined network, honeynet, overlay virtual honeynet

中图分类号: