计算机应用研究2017,Vol.34Issue(2):522-525,4.DOI:10.3969/j.issn.1001-3695.2017.02.045
SDN中基于交换机等级划分的安全路由策略
Security routing strategy based on switch hierarchies in software defined network
摘要
Abstract
Software defined network introduces the separation between data plane and control plane,however it encounters more attacks than the traditional network.This paper introduced security hierarchies mechanism for software defined network switch based on the research on the security of new flow table entity delivery during the process from the detection of abnormal status to the completion of defense.According to the status of switches,it used three security levels to classify the switches,and combined the attack detection and routing selection.Experimental results show that the security routing strategy based on switch security levels enables software defined network to show dynamic scalable capacity when it is faced with attack,which reduces the harm caused by the attacks on the network.关键词
软件定义网络/攻击检测/安全等级划分/网络感知Key words
software defined network/attack detection/security hierarchy/network awareness分类
信息技术与安全科学引用本文复制引用
李兵奎,庄雷,胡颖,马丁,王国卿..SDN中基于交换机等级划分的安全路由策略[J].计算机应用研究,2017,34(2):522-525,4.基金项目
国家“973”计划资助项目(2012CB315901) (2012CB315901)
国家自然科学基金资助项目(61379079) (61379079)
河南省科技厅攻关资助项目(122102210042) (122102210042)
