期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

软件定义的企业级数据中心网络安全研究 被引量:6

Security Study of Software-Defined Enterprise Data Center Network
下载PDF
导出
摘要 新型数据中心引入SDN(软件定义网络)和虚拟化网络后面临诸多新型安全威胁,针对3类主要的安全威胁提出了安全防护的3个阶段,有效解决了新型网络的特有问题和现有安全产品缺陷,并针对目前安全难以适应的业务需求,给出了一种软件定义安全架构,可有效抵御各类快速和深度的攻击。 Security threats of novel data center using software-defined networking were analyzed, and then three protection phases for defending were proposed, which solved unique problems and overcame current security product defects, and finally a software-defined security architecture to defend various quick and advanced attacks was designed.
作者 刘文懋
机构地区 北京神州绿盟信息安全科技股份有限公司 清华大学信息技术研究院
出处 《电信科学》 北大核心 2014年第11期140-144,共5页 Telecommunications Science
基金 国家科技重大专项03专项基金资助项目(No.2012ZX03002011-003 No.2012ZX03002002-003)
关键词 网络虚拟化 安全 软件定义网络 network virtualization, security, software-defined networking
分类号 TP393.08 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献8

  • 1左青云,陈鸣,赵广松,邢长友,张国敏,蒋培成.基于OpenFlow的SDN技术研究[J].软件学报,2013,24(5):1078-1097. 被引量:420
  • 2Ayyub Q Z,Tu C C,Luis C,et al.SIMPLE-fying middlebox policy enforcement using SDN.Proceedings of SIGCOM,Hong Kong,China,2013.
  • 3Randell R.How the software defined datacenter is turning security on its head.Proceedings of RSA Conference,San Francisco,USA,2013.
  • 4沈余锋,余小军.云计算环境下虚拟化安全探讨[J].电力信息与通信技术,2013,11(11):6-11. 被引量:13
  • 5Tr endmicro.Changing the game with agentless security for the virtual datacenter.http://www.vmware.com/files/pdf/partners/trendmicro/vmware-trendmicro-anti-virus-virtual-datacenter-sb-en.pdf,2012.
  • 6Shin S,Porras P,Yegneswaran V,et al.FRESCO:modular composable security services for software-defined networks.Proceedings of Network and Distributed Security Symposium,San Diego,California,USA,2013.
  • 7Braga R,Mota E,Passito A.Lightweight DDo S flooding attack detection using NOX/Open Flow.Proceedings of IEEE 35th Conference on Local Computer Networks(LCN),Edmonton,Canada,2010.
  • 8Shirali-Shahreza S,Ganjali Y.Empowering software defined network controller with packet-level information.Proceedings of Communications Workshops(ICC),Atlanta,2013.

二级参考文献73

  • 1Mckeown N, Anderson T, Balakrishnan H, Parulkar G, Peterson L, Rexford J, Shenker S, Turner J. OpenFlow: Enabling innovation in campus networks. ACM SIGCOMM Computer Communication Review, 2008,38(2):69-74. [doi: 10.1145/1355734. 1355746].
  • 2Elliott C. GENI: Opening up new classes of experiments in global networking. IEEE Internet Computing, 2010,14(1):39-42.
  • 3Gavras A, Karila A, Fdida S, May M, Potts M. Future Internet research and experimentation: The FIRE initiative. ACM SIGCOMM Computer Communication Review, 2007,37(3):89-92. [doi: 10.114511273445.1273460].
  • 4JGN2plus. 2012. http://www.jgn.nict.go.jp/english/index.html.
  • 5SOFIA. 2012. http://fi.ict.ac.cn/research/sofia_overview.htm.
  • 6Yang L, Dantu R, Anderson T, Gopal R. Forwarding and Control Element Separation (ForCES) Framework. RFC 3746, 2004. http://tools.ietf.org/html/rfc3746.
  • 7Greenberg A, Hjalmtysson G, Maltz DA, Myers A, Rexford J, Xie G, Yan H, Zhan J, Zhang H. A clean slate 4D approach to network control and management. ACM SIGCOMM Computer Communication Review, 2005,35(5):41-54. [doi: 10.1145/1096536. 1096541].
  • 8Caesar M, Caldwell D, Feamster N, Rexford J, Shaikh A, Merwe J. Design and implementation of a routing control platform. In: Proc. of the 2rd USENIX Symp. on Networked Systems Design and Implementation (NSDI). Boston: USENIX Association, 2005. 15-28.
  • 9Casado M, Garfinkel T, Akella A, Freedman MJ, Boneh D, Mckeown N, Shenker S. SANE: A protection architecture for enterprise networks. In: Proc. of the 15th Conf. on USENIX Security Symp. Vancouver: USENIX Association, 2006. 137-151.
  • 10Casado M, Freedman MJ, Pettit J, Luo J, Mckeown N, Shenker S. Ethane: Taking control of the enterprise. In: Proc. of the SIGCOMM 2007. Kyoto: ACM Press, 2007. 1-12. [doi: 10.1145/1282380.1282382].

共引文献430

同被引文献32

引证文献6

二级引证文献26

电信科学
2014年 第11期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部