Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Software defined network cross-domain security agent method and software defined network cross-domain security agent system

A software-defined network and security agent technology, applied in the field of business and resource protection, can solve the problems of large amount of redundant information and time extension, and achieve the effect of simplifying the interaction process, reducing difficulty, and ensuring security

Active Publication Date: 2014-12-24
BEIJING UNIV OF POSTS & TELECOMM
View PDF3 Cites 21 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The existing policy synthesis scheme adopts a backtracking scheme, that is, the domain where the source node is located sends a synthesis request to the domain where the sink node is located, and policy collection is performed one by one. After completion, it is traced back to the source node, and policy conflicts are resolved after the policy synthesis is completed at the source node. , the scheme has a long delay and a large amount of redundant information

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Software defined network cross-domain security agent method and software defined network cross-domain security agent system
  • Software defined network cross-domain security agent method and software defined network cross-domain security agent system
  • Software defined network cross-domain security agent method and software defined network cross-domain security agent system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0031] The embodiments of the present invention will be described in further detail below in conjunction with the accompanying drawings.

[0032] figure 1 It is a structural diagram of a software-defined network cross-domain security proxy system, and the software-defined network cross-domain security proxy system includes at least one multi-domain processing module 1, at least two inter-domain proxy modules 2, at least two centralized controllers 3, data communication network4.

[0033] The centralized controller 3 is a control layer device of the SDN network, connected to the data layer through a southbound interface, and controls the data layer devices.

[0034] Each of the inter-domain agent modules 2 is responsible for at least one domain, and is connected to a centralized controller 3 of the domain through an intra-domain interface SI. The intra-domain interface SI transmits service requirements REQ and intra-domain policy configuration instructions CONFIG. After the ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a software defined network cross-domain security agent method and a software defined network cross-domain security agent system. Unified access control and management are performed on cross-domain shared resources, security policy conflict is eliminated, and strategy synthetic efficiency is improved. The software defined network cross-domain security agent system comprises at least two integrated controllers, at least one multi-domain processing module and at least two inter-domain agent modules, wherein the inter-domain agent modules transmit cross-domain business requests to the multi-domain processing modules after performing semantic translation; each multi-domain processing module comprises a resource database and a strategy synthesis unit; and after the strategy synthesis units receive the cross-domain business requests, the resource databases are queried, the strategy synthesis is carried out, and cross-domain strategy configuration commands are transmitted to the inter-domain agent modules. The software defined network cross-domain security agent method comprises the following steps of transferred meaning requesting, authentication requesting, strategy analysis and synthesis, strategy distribution, strategy authentication, strategy execution and the like. By the software defined network cross-domain security agent method and the software defined network cross-domain security agent system, information exchange of a heterogeneous network is simplified, information integration and synchronization difficulty of the heterogeneous network are reduced, resource scheduling safety is guaranteed, multi-domain resource sharing is realized, and business load of the centralized controllers in various domains can be adjusted.

Description

technical field [0001] The invention relates to the field of communication computers, in particular to a method for protecting cross-domain services and resources in a multi-domain software-defined network architecture. Background technique [0002] After the software-defined network (SDN) control architecture is introduced in a single domain, network operators can make full use of the characteristics of software definition, formulate corresponding business policies through the upper interface of the SDN control layer device, and at the same time, use related policies to control the resources of each domain. Logical abstraction of information for unified and flexible management. Under this architecture, the domain can customize resource management requirements according to the rules, and while meeting business requirements, it can ensure that the resource scheduling of multiple domains meets certain security requirements. [0003] In the currently implemented multi-domain S...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L29/08
Inventor 赵永利张杰安培蓉郁小松何锐颖高冠军
Owner BEIJING UNIV OF POSTS & TELECOMM
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com