Unlock instant, AI-driven research and patent intelligence for your innovation.

An SDN-based security authentication method and related equipment

A technology of security authentication and authentication module, applied in the field of communication, can solve problems such as security risks, and achieve the effect of realizing security certification and solving security risks

Active Publication Date: 2020-06-26
BEIJING HUAWEI DIGITAL TECH
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] However, in the above authentication method, it needs to rely on the authentication function of the firewall, and the control layer and the firewall are set separately, so the above authentication method is actually an external authentication method, and there are certain security risks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • An SDN-based security authentication method and related equipment
  • An SDN-based security authentication method and related equipment
  • An SDN-based security authentication method and related equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0066] A typical layered diagram of an SDN network is as follows: figure 1 As shown, it is mainly divided into application layer, control layer and forwarding layer. Each layer is described separately below.

[0067] The forwarding layer mainly includes forwarding devices, such as switches and routers. The forwarding layer usually has a programmable southbound interface, and the control layer manages the forwarding layer through the southbound interface. For example, the control layer issues control policies through the southbound interface to control the forwarding behavior of the forwarding layer. Under the SDN network architecture, the forwarding layer is managed by the control layer, which greatly simplifies the forwarding equipment, thereby reducing the dependence of the SDN network on hardware forwarding equipment.

[0068] The application layer is mainly oriented to user services, converting original user service information into network service models provided by the...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

An embodiment of the invention provides an SDN (Software Defined Network) based security certificating method and a related device. A control layer of an SDN includes a controller cluster. The controller cluster includes a traffic distributing module, a certification module and a service module. The method includes that the traffic distributing module receives a first access request which indicates a first connection is requested to connect to the control layer; the traffic distributing module determines that the first connection is an unknown connection; the traffic distributing module connects the first connection to the certification module; the traffic distributing module receives a certification result of the first connection sent by the certification module; the traffic distributing module determines whether to switch the first connection to the service module or not according to the certification result. Therefore, security certification is performed on accessed connection by the controller cluster and security certification within the control layer is realized, so that potential security hazards caused by external certification methods are eliminated.

Description

technical field [0001] The present invention relates to the field of communication technologies, in particular to a software-defined network (English: Software Defined Network, abbreviated: SDN)-based security authentication method and related equipment. Background technique [0002] The SDN network is an emerging network architecture, which realizes centralized management and control of the network through technologies such as the separation of the control plane and the forwarding plane. A typical layered diagram of an SDN network is as follows: figure 1 As shown, it is mainly divided into application layer, control layer and forwarding layer. Among them, the control layer includes controllers or controller clusters, manages the forwarding layer through the southbound interface, and communicates with the application layer through the northbound interface, which is the core of the entire SDN network. Therefore, ensuring the security of the control layer plays a very import...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L12/721
CPCH04L45/38H04L63/08
Inventor 黎兰迁闫长江倪辉陈霞
Owner BEIJING HUAWEI DIGITAL TECH