Research And Implementation Of SDN Honeynet System Based On Multi-controller Balancing

With the development of network and computer technology,computer system has become increasingly complicated,resulting in the great increase of security vulnerabilities and the difficulty to find them.At the same time,the means of attack have become more and more diversified.In this context,honeynet and other active defense means again aroused the interest of security researchers.In particular,the development of technologies such as software-defined network and cloud computing technology provide more technical support for traffic control and virtualization,allowing Honeynet to implement more powerful and flexible functions.First of all,this paper studies the development history of the traditional honeynet and analyzes the shortcomings of the traditional honeynet.The main factor that restricts the development of Honeynet is the original and rough data control means.Secondly,the idea of control and forwarding separation of SDN can better centralize the logic function of the network so that the switch can more easily match and modify the data packet,which is very suitable for data control applied to the honeynet.Therefore,the paper proceeds with the existing SDN honeynet research.All of these honeynet adopt SDN technology to realize the functions such as broadcast and select reply,TCP connection handover,overlay honeynet and other functions that traditional honeynet can not realize.This paper analyzes the emphasis and deficiency of these researches,and concludes that SDN honeynet still has some improvements in network topology simulation.On this basis,this paper proposes a network simulation model based on SDN network architecture.This model uses OpenFlow switches and controllers to simulate dynamic routing protocols and routing functions.At the same time,the original network topology can be changed to achieve the goal of cheating attackers.Based on the network simulation model proposed in this paper,the functional principle of the controller and the main load sources are analyzed.A multi-controller balanced deployment model for honeynet is proposed.By using the spectral clustering algorithm and improving the final clustering steps,the optimization of multiple targets such as load balancing,delay control and flow control are completed.Finally,based on the balanced deployment algorithm,an SDN honeynet system with network simulation function is implemented.The honeynet system also realizes the functions of traffic transfer,honeypot and host confusion.