摘要
软件定义网络将传统封闭的网络体系解耦为数据平面、控制平面和应用平面,实现网络的集中控制与管理,其突出特点是开放性和可编程性。本文重点研究SDN网络的安全特性,首先讨论SDN的发展现状,并展示如何通过利用SDN功能来解决网络安全中的一些长期问题。然后,描述了SDN面临的新的重要安全威胁-DDo S攻击,并讨论可用于预防和减轻此类威胁的可能技术。
The software definition network decouples the traditional network system into data plane, control plane and application plane, and realizes the centralized control and management of the network. Its outstanding features are openness and programmability. This article focuses on the security aspects of SDN. We first discuss the development of SDN and show how to use SDN to solve some of the long-term problems in network security. Then we describe the new security threats facing SDN-DDoS attacks and at last discuss possible technologies that can be used to prevent such threats.
作者
杨盾
王小鹏
YANG Dun,WANG Xiao-peng(Jiangsu Posts & Telecommunications Planning and Designing Institute, Nanjing Jiangsu Province 21001)
出处
《软件》
2018年第3期175-180,共6页
Software
