期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

基于虚拟化安全网络扩展的SDN安全架构 被引量:6

SDN Security Architecture Based on Virtualized Security Networks
下载PDF
导出
摘要 采用控制、转发分离架构的软件定义网络(SDN)为网络的可编程性与开放性提供极大便利,但也给网络的安全性带来诸多挑战。提出一种虚拟安全网络(Virtualized Security Networks)与数据层中间盒扩展相结合的SDN安全架构,给出该架构的实现要点,并以实验验证其架构实现。测试表明该架构较其他方式具有更好的性能与可扩展性,同时其更有利于传统网络环境下的安全保障机制面向SDN网络架构的过渡迁徙。 Software Defined Networking is in its fast growth in the past years. Its software programmable architecture and openness brings many of new security challenges. Proposes a novel SDS security architecture based on Virtuallzed Security Networks. Discusses the critical fea-tures and use cases of VSN security model in detail, and also verificates its implementation by testing. The analysis shows that the VSN security architecture has better performance and scalabilities with compared with other security models.
作者 肖贵福
机构地区 江苏天创科技有限公司
出处 《现代计算机》 2014年第14期6-10,17,共6页 Modern Computer
关键词 软件定义网络 虚拟化应用扩展 软件定义安全 OpenFlow Software Defined Security(SDN) Virtualized Security Appliance OpenFlow
分类号 TP393.08 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献13

  • 1ONF.Software-Defined Networking: the New Norm for Networks. ONF White Paper, 2012.
  • 2ONF.OpenFlow Switch Specification Version 1.3.1, 2012.
  • 3Yang L, Dantu R, Anderson T, Gopal R. Forwarding and Control Element Separation (ForCES) Framework. RFC 3746, 2004. http:// tools.ieff.org/html/rfc3746.
  • 4Koponen T, Casado M, Gude N, Stribling J, Poutievski L, Zhu M, Ramanathan R, Iwata Y, Inoue H, Hama T, Shenker S. Onix: A Dis- tributed Control Platform for Large-Scale Production Networks. In: Proc. of the 9th USENIX Conf. on Operating Systems Designand Implementation (OSDI). Vancouver: USENIX Association, 2010.
  • 5Beacon. http://www.beaconcontroller.net, 2013.
  • 6NOX. http://noxrepo.org, 2013.
  • 7Timothy L, Natasha S., Martin Casado. Practical Declarative Network Management. http://yuba.stanford.edu/-casado/fml_wren.pdf, 2009.
  • 8Andreas V, Hyojoon K, Nick F. Procera: A Language for High-Level Reactive Network Control. http://gtnoise.net/papers/2012/voellmy: hotsdn2012.pdf, 2012.
  • 9Jennifer R, Nate F, Dave W. Frenetic: A Programming Language for OpenFlow Networks. http://conferences.sigcomm.org/co-next/2010/Workshops/PRESTO/PRESTO_papers/04-Foster.pdf, 2013.
  • 10Campbell W. End-to-end Security in Cloud Computing. Presentation at NSF Workshop on Security for Cloud Computing, March 14.

同被引文献31

引证文献6

二级引证文献46

现代计算机
2014年 第14期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部