Secure flow filter and filtering method based on software defined network (SDN) controller

A controller and security flow technology, applied in electrical components, transmission systems, etc., can solve problems such as high maintenance costs, complex redundancy, loss of software definition, etc., and achieve the effects of enhanced security, high flow filtering efficiency, and evasion protection

Active Publication Date: 2016-04-20
WUHAN POST & TELECOMM RES INST CO LTD
View PDF4 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] Since most of the technologies used in the security management of SDN networks are similar to those of traditional networks, there is no technology and equipment specially designed for SDN network protection, and traditional technologies are too complex and redundant, and the maintenance cost is also very high. At present, t

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Secure flow filter and filtering method based on software defined network (SDN) controller
  • Secure flow filter and filtering method based on software defined network (SDN) controller

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0027] Glossary: ​​An SDN controller is an application in Software Defined Networking (SDN) that is responsible for traffic control to ensure an intelligent network. SDN controllers are based on protocols such as OpenFlow that allow servers to tell switches where to send packets.

[0028] SDN network: By separating the control plane of network equipment from the data plane, flexible control of network traffic is realized, which provides a good platform for core network and application innovation.

[0029] OrchestrationLayer: The service orchestration layer in the SDN network, which is an abstraction layer between the SDN controller and the business layer. According to different network elements and networks, there will be a large number of SDN Controllers in the telecom network, such as: core IP bearer network, core OTN transport network, service control layer, wireless bearer network, fixed access network, etc., all of which correspond to their own SDN controllers. Therefore...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to the fields of computer technologies and networks, in particular to a secure flow filter and a filtering method based on a software defined network (SDN) controller. Before various unknown flow information is written into a flow table of the SDN controller, the secure flow filter can be established at a location through which the flow passes, and is used for analyzing and processing the flow and identifying various attacks or sniffing the flow in order to ensure the validity of data in the flow table and overcome defects caused by a firewall. The secure flow filter is transparent to an existing network; network elements and architecture of the existing network do not need to be modified; extremely-high flow filtering efficiency is achieved through use of a DPDK driver; and the network performance is not influenced. Through adoption of the secure flow filter and the filtering method, the security of the whole network is enhanced at minimum investment on the premise of not modifying the existing SDN network.

Description

technical field [0001] The invention relates to computer technology and network fields, in particular to software-defined network (SDN) and network security control fields. Background technique [0002] It's easy to overlook security concerns when it comes to innovative new technologies. The inventor noticed several security issues when deploying SDN, which made SDN technology face many challenges, such as malicious data flow, switch flow table tampering, application loopholes, data management confidentiality and availability threats, etc., which are common in traditional networks Attacks still exist in SDN networks. Most of the security concerns of SDN revolve around the controller itself, which can be thought of as the switching / routing "brain" that allows the control plane from each system to be managed centrally. Once the controller fails, the entire network will collapse. For security managers, the biggest challenge of SDN is securing controllers at all costs. Now t...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
CPCH04L63/0227H04L63/0263H04L63/20
Inventor 陈亮何炜张新全蔡鸣
Owner WUHAN POST & TELECOMM RES INST CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap