基于拓扑抽象的网络安全事件模拟系统的设计与实现

发布时间：2018-02-27 02:31

本文关键词： 网络安全事件网络模拟拓扑抽象 NS3　出处：《哈尔滨工业大学》2014年硕士论文　论文类型：学位论文

【摘要】：随着计算机的易用性增强计算机如今已经基本在全民中普及。而作为计算机通信媒介的互联网，更是以其便捷、快速的特点，在信息时代占据着不可替代的地位。然而，互联网在给人们生活带来便捷的同时，却给人们带来一些由网络安全事件带来的困扰。有关部门要防止和控制这些事件的发生，就需要研究这些网络安全事件，，从而制定相关的控制方案。在研究网络安全事件时，由于这些事件都是具有危害性的，因此不适宜在真实网络环境中进行实验。而网络模拟作为计算机模拟技术的一种，具有安全无破坏性、可控性等特点，非常适合作为研究网络安全事件的方法。但是，现如今的网络规模急速增长，网络模拟工具已无法很好地完成模拟过程。因此，本文提出一种拓扑抽象方案，实现对网络拓扑中主机节点和路由器节点的抽象，从而缩小网络拓扑的规模，保证大规模网络模拟的正常运行。本文采用一种全新的模拟器NS3作为网络模拟工具。首先分析NS3的网络模拟原理及NS3的网络模拟过程。在此基础上，提出对网络拓扑的抽象方案，采用树形抽象和基于链路特征的抽象算法实现对网络拓扑的抽象。并设计基于计算的数据包收发模型，实现模拟时抽象节点与非抽象节点之间的抽象路由。最后根据网络安全事件的原理，设计实现在NS3模拟器上对三种安全事件的模拟，同时完成一个基于拓扑抽象的网络安全事件模拟系统并对该系统的前台功能和数据库进行了分别测试，最后对安全事件模拟结果进行了结果分析。综上所述，本文主要利用NS3网络模拟器和拓扑抽象技术，完成一个基于拓扑抽象的网络安全事件模拟系统。通过系统测试表明，该系统能够正常完成系统设计中的设计目标，从实验结果来看，拓扑抽象也能够很好的保持安全事件本身的真实性，可作为研究者研究网络安全事件的工具。
[Abstract]:With the ease of use of computers, computers have been basically popularized among all the people. However, the Internet, as a computer communication medium, is playing an irreplaceable role in the information age because of its convenient and rapid characteristics. The Internet not only brings convenience to people's life, but also brings some troubles caused by network security events. To prevent and control these incidents, relevant departments need to study these network security events. Thus, the related control program is formulated. In the study of network security events, because these events are harmful, they are not suitable for experiments in the real network environment. As a kind of computer simulation technology, network simulation is safe and non-destructive. Controllability is very suitable for studying network security events. However, with the rapid growth of network scale nowadays, network simulation tools can not complete the simulation process well. Therefore, a topology abstraction scheme is proposed in this paper. Abstract the host node and router node in network topology so as to reduce the scale of network topology and ensure the normal operation of large-scale network simulation. In this paper, a new simulator, NS3, is used as a network simulation tool. Firstly, the principle of network simulation of NS3 and the process of network simulation of NS3 are analyzed. On this basis, the abstract scheme of network topology is proposed. The network topology is abstracted by tree abstraction and link feature based abstraction algorithm, and a computational packet transceiver model is designed. Finally, according to the principle of network security events, we design and implement the simulation of three kinds of security events in NS3 simulator. At the same time, a network security event simulation system based on topology abstraction is completed, and the foreground function and database of the system are tested separately. Finally, the simulation results of security events are analyzed. To sum up, this paper mainly uses NS3 network simulator and topology abstraction technology to complete a network security event simulation system based on topology abstraction. From the experimental results, topology abstraction can also maintain the authenticity of the security event itself, which can be used as a tool for researchers to study network security events.
【学位授予单位】：哈尔滨工业大学
【学位级别】：硕士
【学位授予年份】：2014
【分类号】：TP393.08

【参考文献】