Unlock instant, AI-driven research and patent intelligence for your innovation.

An access authentication method, device and system for a software-defined network

A software-defined network and access authentication technology, applied in the field of network communication, can solve the problem that the Layer 2 access solution cannot be applied to SDN networks

Active Publication Date: 2018-10-09
NEW H3C TECH CO LTD
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This configuration obviously violates the principle of SDN network, so the Layer 2 access scheme of traditional network cannot be applied to SDN network

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • An access authentication method, device and system for a software-defined network
  • An access authentication method, device and system for a software-defined network
  • An access authentication method, device and system for a software-defined network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0056] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below in conjunction with the accompanying drawings.

[0057] figure 1 It is an exemplary schematic diagram of the access authentication system in the SDN according to the implementation manner of the present invention.

[0058] Such as figure 1 As shown, the system includes:

[0059] The authentication client 101 is used to send an Extensible Authentication Protocol (EAPOL) message on the LAN to the SDN switch 102, and the EAPOL message includes an Extensible Authentication Protocol (EAP) message;

[0060] The SDN switch 102 is configured to carry the EAPOL message in the SDN message based on the flow table issued by the SDN controller 103 and send it to the SDN controller 103;

[0061] The SDN controller 103 is configured to parse the EAPOL message from the SDN message, parse the EAP message from the EAPOL messag...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides an access authentication method, an access authentication device and an access authentication system of an SDN (Software Defined Network). The method is applied to an SND controller and comprises the steps of sending a flow table item to an SDN exchanger, wherein the flow table item is used for bearing an EAPOL (Extensible Authentication Protocol Over Lan) message on an LAN (Local Area Network) received by an authentication client through the SDN exchanger on a SDN message and sending the message to the SDN controller, and the EAPOL message comprises an EAP (Extensible Authentication Protocol) message; the EAPOL message is analyzed in the SDN message, the EAP message is analyzed in the EAPOL message, and the EAP message is supported on a RADIUS (Remote Authentication Dial-In User Service) message and is transmitted to an authentication server, and is used for implementing authentication with the authentication server in an EAP relay-operated way.

Description

technical field [0001] The embodiments of the present invention belong to the technical field of network communication, in particular, a method, device and system for access authentication of a software-defined network (Software Defined Network, SDN). Background technique [0002] SDN technology realizes flexible control of network traffic by separating the control plane and data plane of network equipment. Correspondingly, the SDN architecture includes an SDN controller and an SDN switch, wherein: the SDN controller and the SDN switch communicate through an SDN management channel that is preferably an open flow (OpenFlow protocol), and the SDN controller operates according to user configuration or dynamically The flow table generated by the protocol is delivered to the SDN switch, and the SDN switch processes the message according to the flow table delivered by the SDN controller. [0003] Layer 2 user access control is a security management mechanism based on user informa...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
CPCH04L63/08H04L63/10
Inventor 吴川
Owner NEW H3C TECH CO LTD