抄録
Software-defined networking (SDN) allows the smart grid to be centrally controlled and managed by decoupling the control plane from the data plane, but it also expands attack surface for attackers. Existing studies about the security of SDN-enabled smart grid (SDSG) mainly focused on static methods such as access control and identity authentication, which is vulnerable to attackers that carefully probe the system. As the attacks become more variable and complex, there is an urgent need for dynamic defense methods. In this paper, we propose a security function virtualization (SFV) based moving target defense of SDSG which makes the attack surface constantly changing. First, we design a dynamic defense mechanism by migrating virtual security function (VSF) instances as the traffic state changes. The centralized SDN controller is re-designed for global status monitoring and migration management. Moreover, we formalize the VSF instances migration problem as an integer nonlinear programming problem with multiple constraints and design a pre-migration algorithm to prevent VSF instances' resources from being exhausted. Simulation results indicate the feasibility of the proposed scheme.
| 本文言語 | English |
|---|---|
| ホスト出版物のタイトル | 2019 IEEE International Conference on Communications, ICC 2019 - Proceedings |
| 出版社 | Institute of Electrical and Electronics Engineers Inc. |
| ISBN(電子版) | 9781538680889 |
| DOI | |
| 出版ステータス | Published - 2019 5月 |
| 外部発表 | はい |
| イベント | 2019 IEEE International Conference on Communications, ICC 2019 - Shanghai, China 継続期間: 2019 5月 20 → 2019 5月 24 |
出版物シリーズ
| 名前 | IEEE International Conference on Communications |
|---|---|
| 巻 | 2019-May |
| ISSN(印刷版) | 1550-3607 |
Conference
| Conference | 2019 IEEE International Conference on Communications, ICC 2019 |
|---|---|
| 国/地域 | China |
| City | Shanghai |
| Period | 19/5/20 → 19/5/24 |
ASJC Scopus subject areas
- コンピュータ ネットワークおよび通信
- 電子工学および電気工学
UN SDG
この成果は、次の持続可能な開発目標に貢献しています
