Research On Dynamic Orchestration Algorithm Of Network Security Functions Based On 5G

At present,the network combining 5G network communication technology and industrial Internet is the focus of research.During the development of the Industrial Internet,as the number of devices in the network increases,the requirements for high network traffic and low latency are also getting higher and higher.Therefore,the high traffic of the Industrial Internet can be met by combining 5G with the Industrial Internet.and low latency requirements.Researchers in various industries are constantly exploring the technology and application of the combination of 5G and industrial Internet.Through the application of this technology,the industrial Internet can have the possibility of using the advantages of 5G network communication technology.From the perspective of network security,there is a transition period in the process of gradual integration of 5G and the Industrial Internet,which may lead to a part of the network being the Industrial Internet and the other part being the 5G network.The advantages of the two cannot be effectively combined.In thesis,we focus on 5G The network security issues combined with the industrial Internet are studied.Thesis focuses on the network security architecture design after the integration of 5G and the industrial Internet,and tries to use software-defined network theory and 5G network function virtualization technology to dynamically arrange existing network security function resources to make the network more secure.The following research work is carried out:1.Design and verification of dynamic orchestration algorithm.In order to improve security in rail transit industry network scenarios,we dynamically arrange service function chains for existing network security functions.The basic dynamic orchestration algorithm we propose dynamically creates service function chains according to the network environment.At the same time,the algorithm also supports the creation of service function chains across security domains.In the verification stage,simulation tests are carried out based on MATLAB and Mininet to verify the correctness of the algorithm.According to the research plan,thesis also designed an improved version of the dynamic orchestration algorithm.The improved algorithm can be more closely combined with network function virtualization,allowing a certain degree of flexibility in the deployment mapping of network security function services,and can provide functions that cannot be defined for undeployed network security function service mapping in the basic dynamic orchestration algorithm.In the simulation,we compared the performance of the improved version of the dynamic orchestration algorithm and the traditional policy of creating service function chains to process abnormal data packets.The result is that when processing similar abnormal data packets,the processing delay of the improved algorithm is lower than that of the traditional service function chain..2.Research on the improvement of network security architecture.According to the characteristics of the combination of 5G technology and the industrial Internet,thesis conducts research on the network security architecture.The network security architecture divides different security domains through the analysis of the rail transit industry scenarios,and designs the processing flow for abnormal data packets.We adapt the proposed dynamic orchestration algorithm through a network security architecture.