公开(公告)号：US10382457B2

公开(公告)日：2019-08-13

申请号：US15363047

申请日：2016-11-29

Applicant: Huawei Technologies Co., Ltd.

Inventor： Laijun Zhong ,  Xiuchu Zhao ,  Kai Qi

IPC: H04L29/06 ,  H04L12/717 ,  H04L12/721 ,  H04L12/755 ,  H04L12/801 ,  H04L12/823

Abstract: An attack stream identification method, apparatus, and device on a software defined network is presented, where an invalid stream filter table is stored in a switch, and the method includes the steps of the switch receives a data packet of a data stream and searches, according to a characteristic value of the data packet, the invalid stream filter table for a state field of a filter entry; when the state field is a suspected attack stream state or a non-attack stream state, the switch sends a report message to a controller, determines a rate value for sending the report message to the controller, and fills the rate value in a rate field of the filter entry; and when the rate value is greater than a preset rate threshold, the switch changes the state field of the filter entry to an attack stream state.

公开(公告)号：US20170078313A1

公开(公告)日：2017-03-16

申请号：US15363047

申请日：2016-11-29

Applicant: Huawei Technologies Co., Ltd.

Inventor： Laijun Zhong ,  Xiuchu Zhao ,  Kai Qi

IPC: H04L29/06

CPC classification number: H04L63/1416 ,  H04L29/06 ,  H04L45/021 ,  H04L45/38 ,  H04L45/42 ,  H04L47/29 ,  H04L47/32 ,  H04L63/0245

Abstract: An attack stream identification method, apparatus, and device on a software defined network is presented, where an invalid stream filter table is stored in a switch, and the method includes the steps of the switch receives a data packet of a data stream and searches, according to a characteristic value of the data packet, the invalid stream filter table for a state field of a filter entry; when the state field is a suspected attack stream state or a non-attack stream state, the switch sends a report message to a controller, determines a rate value for sending the report message to the controller, and fills the rate value in a rate field of the filter entry; and when the rate value is greater than a preset rate threshold, the switch changes the state field of the filter entry to an attack stream state.

Abstract translation: 本发明提供了一种软件定义网络上的攻击流识别方法，装置和设备，其中无线流过滤表存储在交换机中，该方法包括交换机接收数据流的数据包并进行搜索的步骤， 根据数据分组的特征值，滤波器条目的状态字段的无效流过滤表; 当状态字段是可疑的攻击流状态或非攻击流状态时，交换机向控制器发送报告消息，确定用于向控制器发送报告消息的速率值，并在速率字段中填充速率值 的过滤条目; 并且当速率值大于预设速率阈值时，交换机将过滤器条目的状态字段改变为攻击流状态。

公开(公告)号：US10114577B2

公开(公告)日：2018-10-30

申请号：US15708815

申请日：2017-09-19

Applicant: Huawei Technologies Co., Ltd.

Inventor： Hongkuan Liu ,  Laijun Zhong ,  Jiang Tan

IPC: G06F3/06 ,  G06F12/0806 ,  G06F12/16 ,  G06F15/173

Abstract: A data reading method, a data processing device, and a data processing system are provided. The method, executed by a first control node, includes receiving a reading message forwarded by a data switching device, where the reading message is used to instruct the first control node to read first data, and the reading message is sent by a second control node to the data switching device; if a data status identifier of the first data in a first storage node is a valid identifier, reading the first data from the first storage node, and sending the read first data to the data switching device, so that the data switching device forwards the read first data to the second control node, where the valid identifier indicates that the first data on the first storage node is available. The present application ensures that the latest first data in the node group is read.

公开(公告)号：US20180004451A1

公开(公告)日：2018-01-04

申请号：US15708815

申请日：2017-09-19

Applicant: Huawei Technologies Co., Ltd.

Inventor： Hongkuan Liu ,  Laijun Zhong ,  Jiang Tan

IPC: G06F3/06

CPC classification number: G06F3/0644 ,  G06F3/0604 ,  G06F3/0683 ,  G06F12/0806 ,  G06F12/16 ,  G06F15/173

Abstract: A data reading method, a data processing device, and a data processing system are provided. The method, executed by a first control node, includes receiving a reading message forwarded by a data switching device, where the reading message is used to instruct the first control node to read first data, and the reading message is sent by a second control node to the data switching device; if a data status identifier of the first data in a first storage node is a valid identifier, reading the first data from the first storage node, and sending the read first data to the data switching device, so that the data switching device forwards the read first data to the second control node, where the valid identifier indicates that the first data on the first storage node is available. The present application ensures that the latest first data in the node group is read.