Research On Security Situation Awareness And Fault Repair Method Of All-optical Network

With the development of the Internet the demand of various high-speed application is increasing, traditional photoelectric hybrid network has been unable to meet the requirements of large capacity, high rate of transmission,therefore all-optical network which composed of a variety of new optical switching equipment and technology is gradually become the first choice of the backbone network. With all-optical domain signal transmission form, all-optical network provides level as high as one trillion-bit data transmission rate, but at the same time of fast, large capacity transmission, there are many potential safety problems exist. For the study of all-optical network security issues, in the first place the analysis of characteristics and regularity of the factors influencing the all-optical network security performance is needed to avoid the risk of attack in advance. Simultaneously,operation mechanism which can perform a long-term monitoring, identify, evaluate is needed to ensure the operation of the network safe and effective. In the second place, facing security problems, effective repair method and strategy are needed in order to reduce losses and improve the ability of all-optical network to deal with security threats. According to the study of all-optical network show that compared with the study of all-optical network transmission performance, the study of all-optical network security problems is still relatively less and lack of systemic and normative, so this topic has important theoretical and practical significance.This dissertation give full consideration to all-optical network running state of itself and the external environment change, and a perception model facing detection of system internal and external is put forward,meanwhile a kind of fault restore method of all-optical network under SDN architecture is put forward.Based on the analysis of all-optical network security situation, the ability of adaptive link resources allocation of all-optical network is further improved. The research contents are as follows:Firstly, for all-optical network vulnerability problems of the internal,combining with the operation characteristics of all-optical network, a formal modeling and analysis method about vulnerability propagation based on the Bio-PEPA is proposed. The model analyzes the characteristics that influence the propagation of vulnerability, and optical fibers, optical amplifiers and optical switches are abstract into three different clusters. According to the equipment running status, different state of vulnerability are defined, and propagation behavior of vulnerability within intra-cluster and inter-cluster are described accurately, meanwhile ordinary differential equation is used to analyze the operation law of vulnerability propagation of all-optical network, then the security policy of inhibiting the propagation of vulnerability of all-optical network is achieved.This method can depict all-optical network vulnerability propagation behavior and effect more accurately, and reduce the scale of state space, from the perspective of internal factors such as operation condition of system itself to determine the motivation that influence all-optical network security situational.Secondly, for the fault identification problem that caused by the change of the external environment of all-optical network, combining with the characteristics of all-optical network distributed monitoring and based on fault detection with multi-source information perception, a mutual information based method for fault location is proposed.By extracting the characteristics of fault signal and associating sensory information, analysing the behavior characteristic and manner caused by failure, a model of fault location link selection is constructed, in the meantime a algorithm of fault location based on Multi-Agent coevolution is put forward. By means of multi-source information collaboration, all-optical network fault detection and location are achieved. In the aspect of all-optical network fault location accuracy and positioning time and other indicators, the method shows good experimental effect, from the perspective of system environment, users of the system, and other external factors, determining the motivation that influence all-optical network security situational.Thirdly, for the problems of quantitative analysis that the external environment of all-optical network impacts on the system, a kind of method that evidence reasoning based all-optical network security situation assessment is put forward.Through the use of evidence reasoning model the method associates all kinds of all-optical network security factors with evidence of reasoning, and integrates various evidence of safety factors, including the optical line terminal, optical cross-connect equipment and optical add drop multiplexer equipment failure, and eavesdrop , service degradation attacks and so on, at the same time through setting the basic properties, collecting network data, setting assessment rules and feature extraction and so on to integrated information layer-by-layer, the quantitative evaluation results of network security situation is achieved.Experimental results show that under different operation environment of network,the method can accurately evaluate the all-optical network security situation,and grasp the safety status of the all-optical network in real time and microscopically,to provide theoretical basis for security decision-making.Finally, for the all-optical network fault problem caused by internal and external environment changes, a method that SDN based multi-objective all-optical network routing and wavelength assignment is put forward. The method combine impairment awareness with important indicators of vulnerability Inhibition of all-optical network, set a multi-objective model taking into account both link quality and time to recovery, and using virtual resources scheduling of SDN, meanwhile the model can be converted into integer programming problem by means of network service function chain, at the same time, the algorithm of binary hybrid topology particle swarm optimization is used to solve the problem.From model design to algorithm application the method improve the efficiency of troubleshooting overall, a good repairing result is obtained, and improve the safety and responsiveness of all-optical networks under different circumstances.