摘要
未来的网络要求有一个灵活、弹性、可拓展的网络架构,才能适应多样化对服务的新要求。意图驱动网络针对这一难题提供了一种切实可行的新思想,具体地说是基于意图闭环技术可以让网络管理员不必再去注意复杂的配置细节,仅需表达网络服务需求即可获得自主可靠的服务。首先对目前网络安全中出现的新问题进行剖析,对意图驱动网络方法论及其关键技术进行梳理,提出一种基于意图驱动网络闭环生命周期架构;探究意图驱动网络安全服务韧性策略推理。意图驱动网络的实践案例包含意图的生成、转译、策略制定和部署等过程,实现了网络故障情况下保障网络服务的永续在线,反映出意图驱动网络的全生命周期。
In the future,network will necessitate flexible,resilient,and scalable frameworks to accommodate evolving and diverse services.Intent-driven network provides a practical and feasible new idea for addressing this challenge.Specifically,intent-driven loop allows network administrators to focus less on intricate configuration details and more on expressing service requirements,facilitating autonomous and reliable services.Firstly,this work analyzes new challenges emerging in the field of cybersecurity.Subsequently,it introduces the methodology and key technologies of intent-driven network,proposing a lifecycle intent-driven architecture based on intent-driven network.Secondly,a method of reasoning for resilience strategies is introduced in intent-driven network security services.The practical application of intent-driven network involves the generation,translation,policy formulation,and deployment of intents,thereby ensuring the continuous online availability of network services even in the event of network failures.This reflects the entire lifecycle of an intent-driven network.
作者
宋延博
高先明
杨春刚
李鹏程
SONG Yanbo;GAO Xianming;YANG Chungang;LI Pengcheng(School of Telecommunications Engineering,Xidian University,Xi’an 710071,China;Institute of System Engineering Academy of Military Sciences,Beijing 100039,China;Hangzhou Institute of Technology,Xidian University,Hangzhou 311200,China)
出处
《系统工程与电子技术》
EI
CSCD
北大核心
2024年第9期3211-3220,共10页
Systems Engineering and Electronics
关键词
意图驱动网络
网络安全
网络策略
网络韧性
intent-driven network
network security
network policy
network resilience
