A Dynamic Hidden Forwarding Path Planning Method Based on Improved Q-Learning in SDN Environments

<table class="fixed-width table-group" id="tab1"><tr><td><table class="table"><colgroup><col style="width:3.20em"/><col style="width:8.36em"/><col style="width:10.07em"/><col style="width:7.81em"/><col style="width:6.02em"/></colgroup><tr><td class="thead-hr" colspan="5"><hr/></td></tr><tr class="thead"><td class="align_left">Host</td><td class="align_center">Network segment</td><td class="align_center">Service</td><td class="align_center">CVE number</td><td class="align_center">Success rate</td></tr><tr><td class="thead-hr" colspan="5"><hr/></td></tr><tr><td class="align_left"><span style="width: 15.1589ptpx;"><svg height="11.927pt" id="M113" style="vertical-align:-3.291101pt" version="1.1" viewbox="-0.0498162 -8.6359 15.1589 11.927" width="15.1589pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M828 650H570L564 622C646 614 650 609 634 524L604 366H253L281 524C296 608 308 615 382 622L388 650H132L126 622C211 615 214 609 198 524L121 122C106 42 102 35 23 28L17 0H276L282 28C196 35 191 40 206 122L243 324H597L559 123C544 42 537 35 452 28L446 0H710L716 28C632 35 628 43 643 122L719 524C735 610 741 615 822 622L828 650Z" id="g113-73"></path></g><g transform="matrix(.0091,0,0,-0.0091,10.075,3.132)"><path d="M245 635C92 635 37 457 37 312C37 149 91 -12 244 -12C395 -12 449 166 449 312C449 469 395 635 245 635ZM243 598C332 598 358 454 358 312C358 173 334 26 245 26C158 26 128 174 128 313S152 598 243 598Z" id="g50-49"></path></g></svg></span></td><td class="align_center">Internet</td><td class="align_center">Attack Tools</td><td class="align_center">None</td><td class="align_center">0</td></tr><tr><td class="align_left"><span style="width: 15.1589ptpx;"><svg height="11.8174pt" id="M114" style="vertical-align:-3.1815pt" version="1.1" viewbox="-0.0498162 -8.6359 15.1589 11.8174" width="15.1589pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M828 650H570L564 622C646 614 650 609 634 524L604 366H253L281 524C296 608 308 615 382 622L388 650H132L126 622C211 615 214 609 198 524L121 122C106 42 102 35 23 28L17 0H276L282 28C196 35 191 40 206 122L243 324H597L559 123C544 42 537 35 452 28L446 0H710L716 28C632 35 628 43 643 122L719 524C735 610 741 615 822 622L828 650Z" id="g113-73"></path></g><g transform="matrix(.0091,0,0,-0.0091,10.075,3.132)"><path d="M389 0V32C297 38 291 46 291 118V635C234 613 175 595 109 583V556L161 554C203 552 207 547 207 497V118C207 46 201 38 110 32V0H389Z" id="g50-50"></path></g></svg></span></td><td class="align_center">Internet</td><td class="align_center">Office</td><td class="align_center">None</td><td class="align_center">0</td></tr><tr><td class="align_left"><span style="width: 15.1589ptpx;"><svg height="11.8174pt" id="M115" style="vertical-align:-3.1815pt" version="1.1" viewbox="-0.0498162 -8.6359 15.1589 11.8174" width="15.1589pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M828 650H570L564 622C646 614 650 609 634 524L604 366H253L281 524C296 608 308 615 382 622L388 650H132L126 622C211 615 214 609 198 524L121 122C106 42 102 35 23 28L17 0H276L282 28C196 35 191 40 206 122L243 324H597L559 123C544 42 537 35 452 28L446 0H710L716 28C632 35 628 43 643 122L719 524C735 610 741 615 822 622L828 650Z" id="g113-73"></path></g><g transform="matrix(.0091,0,0,-0.0091,10.075,3.132)"><path d="M414 144C384 79 371 75 317 75H135L276 221C367 316 408 376 408 465C408 570 327 635 237 635C179 635 131 609 100 575L42 494L67 471C94 510 138 565 205 565C277 565 321 517 321 435C321 348 258 270 195 195C146 137 88 81 33 26V0H411C423 44 433 88 446 135L414 144Z" id="g50-51"></path></g></svg></span></td><td class="align_center">DMZ</td><td class="align_center">IIS7.0(HTTP)</td><td class="align_center">CVE-2015-1635</td><td class="align_center">0.9</td></tr><tr><td class="align_left"><span style="width: 15.1589ptpx;"><svg height="11.927pt" id="M116" style="vertical-align:-3.291101pt" version="1.1" viewbox="-0.0498162 -8.6359 15.1589 11.927" width="15.1589pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M828 650H570L564 622C646 614 650 609 634 524L604 366H253L281 524C296 608 308 615 382 622L388 650H132L126 622C211 615 214 609 198 524L121 122C106 42 102 35 23 28L17 0H276L282 28C196 35 191 40 206 122L243 324H597L559 123C544 42 537 35 452 28L446 0H710L716 28C632 35 628 43 643 122L719 524C735 610 741 615 822 622L828 650Z" id="g113-73"></path></g><g transform="matrix(.0091,0,0,-0.0091,10.075,3.132)"><path d="M290 377C321 398 342 415 358 430C378 450 389 473 389 502C389 578 329 635 238 635H237C184 635 137 610 109 578L64 515L88 493C112 529 154 573 208 573S303 542 303 482C303 409 233 370 141 341L149 308C165 313 190 319 215 319C272 319 341 283 341 193C342 98 292 43 222 43C163 43 122 72 96 94C88 101 79 100 70 94C61 87 47 73 46 60C44 47 48 37 62 23C76 10 118 -12 165 -12C238 -12 430 62 430 223C430 297 379 359 290 375V377Z" id="g50-52"></path></g></svg></span></td><td class="align_center">DMZ</td><td class="align_center">IIS7.0(HTTP)</td><td class="align_center">CVE-2015-1635</td><td class="align_center">0.9</td></tr><tr><td class="align_left"><span style="width: 15.1589ptpx;"><svg height="11.8174pt" id="M117" style="vertical-align:-3.1815pt" version="1.1" viewbox="-0.0498162 -8.6359 15.1589 11.8174" width="15.1589pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M828 650H570L564 622C646 614 650 609 634 524L604 366H253L281 524C296 608 308 615 382 622L388 650H132L126 622C211 615 214 609 198 524L121 122C106 42 102 35 23 28L17 0H276L282 28C196 35 191 40 206 122L243 324H597L559 123C544 42 537 35 452 28L446 0H710L716 28C632 35 628 43 643 122L719 524C735 610 741 615 822 622L828 650Z" id="g113-73"></path></g><g transform="matrix(.0091,0,0,-0.0091,10.075,3.132)"><path d="M462 177V227H365V632H320C217 496 116 350 21 208V177H284V109C284 43 280 38 190 31V0H451V31C369 38 365 43 365 108V177H462ZM284 227H88C155 336 218 430 282 519H284V227Z" id="g50-53"></path></g></svg></span></td><td class="align_center">DMZ</td><td class="align_center">BIND9(DNS)</td><td class="align_center">CVE-2015-5477</td><td class="align_center">0.6</td></tr><tr><td class="align_left" rowspan="5"><span style="width: 15.1589ptpx;"><svg height="11.927pt" id="M118" style="vertical-align:-3.291101pt" version="1.1" viewbox="-0.0498162 -8.6359 15.1589 11.927" width="15.1589pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M828 650H570L564 622C646 614 650 609 634 524L604 366H253L281 524C296 608 308 615 382 622L388 650H132L126 622C211 615 214 609 198 524L121 122C106 42 102 35 23 28L17 0H276L282 28C196 35 191 40 206 122L243 324H597L559 123C544 42 537 35 452 28L446 0H710L716 28C632 35 628 43 643 122L719 524C735 610 741 615 822 622L828 650Z" id="g113-73"></path></g><g transform="matrix(.0091,0,0,-0.0091,10.075,3.132)"><path d="M158 548H390L417 615L410 623H122L83 318C105 326 143 337 185 337C296 337 350 275 350 188C350 116 308 42 225 42C164 42 122 74 100 93C90 101 82 99 72 92C60 82 51 68 50 59C48 46 52 38 66 24C82 9 125 -12 172 -12C225 -11 292 15 346 59C408 108 437 166 437 226C437 309 371 397 242 397C214 397 170 382 133 369L158 548Z" id="g50-54"></path></g></svg></span></td><td class="align_center" rowspan="5">Intranet</td><td class="align_center">Sendmail(Mail)</td><td class="align_center">CVE-2009-4565</td><td class="align_center">0.5</td></tr><tr><td class="align_center">OpenSSH 5.4(SSH)</td><td class="align_center">CVE-2016-0778</td><td class="align_center">0.3</td></tr><tr><td class="align_center">OpenSSH 5.4(SSH)</td><td class="align_center">CVE-2016-0778</td><td class="align_center">0.3</td></tr><tr><td class="align_center">MySQL 5.7.12(SQL)</td><td class="align_center">CVE-2016-3521</td><td class="align_center">0.6</td></tr><tr><td class="align_center"> </td><td class="align_center">CVE-2016-3614</td><td class="align_center">0.3</td></tr><tr><td class="align_left"><span style="width: 15.1589ptpx;"><svg height="11.927pt" id="M119" style="vertical-align:-3.291101pt" version="1.1" viewbox="-0.0498162 -8.6359 15.1589 11.927" width="15.1589pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M828 650H570L564 622C646 614 650 609 634 524L604 366H253L281 524C296 608 308 615 382 622L388 650H132L126 622C211 615 214 609 198 524L121 122C106 42 102 35 23 28L17 0H276L282 28C196 35 191 40 206 122L243 324H597L559 123C544 42 537 35 452 28L446 0H710L716 28C632 35 628 43 643 122L719 524C735 610 741 615 822 622L828 650Z" id="g113-73"></path></g><g transform="matrix(.0091,0,0,-0.0091,10.075,3.132)"><path d="M141 347C171 480 264 541 327 570C364 587 403 599 436 605L429 641C389 634 339 622 300 609C191 570 37 458 37 239C37 86 126 -12 245 -12C367 -12 454 89 454 210C454 314 380 397 272 397C252 397 230 390 208 380L141 347ZM231 338C323 338 366 257 366 174C366 108 340 27 263 27C180 27 129 123 129 244C129 268 130 292 135 310C158 323 193 338 231 338Z" id="g50-55"></path></g></svg></span></td><td class="align_center">Intranet</td><td class="align_center">MySQL 5.7.12(SQL)</td><td class="align_center">CVE-2016-3521</td><td class="align_center">0.6</td></tr><tr><td class="align_left"> </td><td class="align_center"> </td><td class="align_center"> </td><td class="align_center">CVE-2016-3614</td><td class="align_center">0.3</td></tr><tr><td class="align_left"><span style="width: 15.1589ptpx;"><svg height="11.927pt" id="M120" style="vertical-align:-3.291101pt" version="1.1" viewbox="-0.0498162 -8.6359 15.1589 11.927" width="15.1589pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M828 650H570L564 622C646 614 650 609 634 524L604 366H253L281 524C296 608 308 615 382 622L388 650H132L126 622C211 615 214 609 198 524L121 122C106 42 102 35 23 28L17 0H276L282 28C196 35 191 40 206 122L243 324H597L559 123C544 42 537 35 452 28L446 0H710L716 28C632 35 628 43 643 122L719 524C735 610 741 615 822 622L828 650Z" id="g113-73"></path></g><g transform="matrix(.0091,0,0,-0.0091,10.075,3.132)"><path d="M453 623H65C60 580 56 530 46 472H80C103 538 110 548 175 548H389C310 380 195 168 90 0L98 -12L175 -2C273 206 366 408 462 610L453 623Z" id="g50-56"></path></g></svg></span></td><td class="align_center">Intranet</td><td class="align_center">Serv-U 10.5.0.19(FTP)</td><td class="align_center">CVE-2011-4800</td><td class="align_center">0.7</td></tr><tr><td class="align_left"><span style="width: 15.1589ptpx;"><svg height="11.927pt" id="M121" style="vertical-align:-3.291101pt" version="1.1" viewbox="-0.0498162 -8.6359 15.1589 11.927" width="15.1589pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M828 650H570L564 622C646 614 650 609 634 524L604 366H253L281 524C296 608 308 615 382 622L388 650H132L126 622C211 615 214 609 198 524L121 122C106 42 102 35 23 28L17 0H276L282 28C196 35 191 40 206 122L243 324H597L559 123C544 42 537 35 452 28L446 0H710L716 28C632 35 628 43 643 122L719 524C735 610 741 615 822 622L828 650Z" id="g113-73"></path></g><g transform="matrix(.0091,0,0,-0.0091,10.075,3.132)"><path d="M253 635C142 635 71 555 71 471C71 401 113 353 178 316C144 294 106 267 91 252C70 231 46 202 46 157C46 51 132 -12 241 -12C328 -12 442 52 442 168C442 257 379 305 311 343C354 373 380 398 388 407C406 428 417 458 417 487C417 568 348 635 253 635ZM240 600C288 600 340 563 340 481C340 423 313 387 279 360C207 394 148 427 148 499C148 549 182 600 240 600ZM252 23C188 23 129 73 129 163C129 217 162 266 211 298C289 260 360 217 360 144C360 69 312 23 252 23Z" id="g50-57"></path></g></svg></span></td><td class="align_center">Intranet</td><td class="align_center">Outlook(Mail)</td><td class="align_center">CVE-2015-6172</td><td class="align_center">0.4</td></tr><tr><td class="align_left"> </td><td class="align_center"> </td><td class="align_center">System</td><td class="align_center">CVE-2003-0352</td><td class="align_center">0.6</td></tr><tr class="table-tr"><td colspan="5"><hr class="tbody-hr"/></td></tr></table></td></tr></table>

<div>Information of software and vulnerabilities on the terminals in the target network.</div>

Security and Communication Networks

tab1

Table 1

Table 1: A Dynamic Hidden Forwarding Path Planning Method Based on Improved Q-Learning in SDN Environments 