Based on the technology of the protection against malicious web sites and the SDN (software defined networks), this paper puts forward a protection system against malicious web sites based on the SDN. Several experiments are conducted to verify the performance of each module of the system. The system is applied to a real campus network environment. And the testing results show that our system can effectively prevent malicious web sites and provide a good support against malicious attacks.
CHEN Xiaofan
,
LI Zhiyong
,
LI Ning
. Protection system against malicious web sites based on software defined network[J]. Science & Technology Review, 2015
, 33(5)
: 93
-99
.
DOI: 10.3981/j.issn.1000-7857.2015.05.015
[1] 何公道, 王江民. 我国恶意网站现状及防治对策研究[J]. 中国人民公安大学学报: 自然科学版, 2008(3): 1-4. He Gongdao, Wang Jiangmin. Study on current situation and countermeasures of malicious web sites in China[J]. Journal of Chinese People'sPublicSecurityUniversity: NaturalScienceEdition, 2008(3):1-4.
[2] 周佩颖. 恶意的URL捕获分析系统[D]. 成都: 电子科技大学, 2010. Zhou Peiying. Malicious URL capture and analysis system[D]. Chengdu: University of Electronic Science and Technology of China, 2010.
[3] Sheng S, Wardman B, Warner G, et al. An empirical analysis of phishing blacklists[C]. Sixth Conference on Email and Anti-Spam (CEAS), California, USA, July 16-17, 2009.
[4] 程杰仁, 殷建平, 刘运, 等. 蜜罐及蜜网技术研究进展[J]. 计算机研究与 发展, 2009(S1): 375-378. Cheng Jieren, Yin Jianping, Liu Yun, et al. Research progress of honeypot and honeynet technology[J]. Research and Development of Computer, 2009(S1): 375-378.
[5] Wang Y M, Beck D, Jiang X, et al. Automated web patrol with strider honeymonkeys[C]//Proceedings of the 2006 Network and Distributed System Security Symposium. San Diego, California, USA: The Internet Society, 2006, 35-49.
[6] Seifert C, Steenson R. Capture-honeypot client (capture-hpc)[EB/OL].[2014-07-14]. http://projects.honeynet.org/capture-hpc.
[7] Moshchuk A, Bragin T, Gribble S D, et al. A crawler-based study of spyware in the web[C]. The 2006 Network and Distributed System Security Symposium, San Diego, California, USA, February 1-2, 2006.
[8] McKeown N, Anderson T, Balakrishnan H, et al. OpenFlow: Enabling innovation in campus networks[J]. ACM SIGCOMM Computer Communication Review, 2008, 38(2): 69-74.
[9] Open Network Foundation. Software defined networking: The new norm for networks[EB/OL]. [2014-07-14]. https://www.opennetworking.org/ images/stories/downloads/sdn-resources/white-papers/wp-sdn-newnorm. pdf.
[10] 范伟. 软件定义网络及应用[J]. 通信技术. 2013, 46(3): 67-70. Fan Wei. Software defined network and application[J]. Communications Technology, 2013, 46(3): 67-70.
[11] 左青云, 陈鸣, 赵光松, 等. 基于OpenFlow的SDN技术研究[J]. 软件学 报, 2013, 24(5): 1078-1097. Zuo Qingyun, Chen Ming, Zhao Guangsong, et al. Research on OpenFlow-based SDN technologies[J]. Journal of Software, 2013, 24(5): 1078-1097.
[12] Jain S, Kumar A, Mandal S, et al. B4: Experience with a globallydeployed software defined wan[J]. ACM SIGCOMM Computer Communication Review, 2013, 43(4): 3-14.
[13] Fan L, Cao P, Almeida J, et al. Summary cache: A scalable wide-area web cache sharing protocol[J]. IEEE/ACM Transactions on Networking, 2000, 8(3): 281-293.
[14] 郑礼雄, 李青山, 李素科, 等. 基于域名信息的钓鱼URL探测[J]. 计算 机工程, 2012, 38(10): 108-110. Zheng Lixiong, Li Qingshan, Li Suke, et al. Detection of URL domain name information[J]. Computer Engineering, 2012, 38(10): 108-110.
[15] Burkhard W A, Keller R M. Some approaches to best-match file searching[J]. Communications of the ACM, 1973, 16(4): 230-236.
[16] Nicira. NOX repository website[EB/OL]. [2014-07-14]. http://noxrepo. org.
[17] NetFPGATeam.NetFPGAwebsite[EB/OL].[2014-07-14]. http://netfpga. org.
[18] Naous J, Erickson D, Covington G A, et al. Implementing an OpenFlow switch on the NetFPGA platform[C]. ANCS 2008 Symposium on Architecture for Networking and Communications Systems, San Jose, California, USA, November 06-07, 2008.
[19] Biondi P. Scapy[EB/OL]. [2014-07-14]. http://www. secdev. org/projects/ scapy.
