Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Software defined network (SDN) based packet forwarding verification

A software-defined network and data packet technology, applied in electrical components, transmission systems, etc., can solve problems such as user security risks and privacy data leakage, and achieve the effect of protecting privacy, ensuring security, and reducing performance problems.

Inactive Publication Date: 2018-10-23
HUAWEI INT +1
View PDF3 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

These attacks will bring serious security risks to users, such as privacy data leakage

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Software defined network (SDN) based packet forwarding verification
  • Software defined network (SDN) based packet forwarding verification
  • Software defined network (SDN) based packet forwarding verification

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0077] The present disclosure relates to a method and system for verifying the accuracy of data packets forwarded in a network. More specifically, the present disclosure relates to a method and system for verifying inconsistency or malicious tampering of a forwarding path of a data packet in a network.

[0078] In current networks, two problems faced by network administrators are equipment failure and network attacks. A device failure caused the device to forward packets to an incorrect port. This increases network latency and poses a serious security risk to users. Cyber ​​attacks even directly steal users' private data. Attackers can forward network traffic to attacker-controlled machines to eavesdrop on user traffic, or directly tamper with user packets to inject malicious code.

[0079] In these failure or attack scenarios, packets are often forwarded to incorrect paths or directly tampered with. In the present disclosure, data packet forwarding verification includes t...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

This disclosure relates to a system and method for verifying a veracity of data packets being forwarded in a Software Defined Network (SDN) having a SDN controller and multiple switches. The method comprises: generating and transmitting orders to a first switch and a second switch to return a first detection data and a second detection data of a network flow; receiving the first detection data andthe second detection data, the first detection data being the number of data packets from the network flow with a first label reported by the first and second switches, and the second detection databeing a content associated to the data packets from the network flow with the first label reported by the first and second switches; performing an analysis on the first and second detection data; andraising an action ticket if the analysis on the first and second detection data fails.

Description

technical field [0001] The present disclosure relates to a method and system for verifying the accuracy of data packets forwarded in a network. More specifically, the present disclosure relates to a method and system for verifying inconsistency or malicious tampering of a forwarding path of a data packet in a network. Background technique [0002] Software Defined Networking (SDN) is a new network system. Compared with traditional network systems, SDN physically isolates the control layer and data layer of the network. The control plane is responsible for calculating routes for data packets, while the data plane is responsible for forwarding data packets. In traditional networks, distributed algorithms are used to calculate routes, and routers or switches include both control planes and data planes. This makes network configuration and management very complex. In contrast, SDN physically separates the two layers. More specifically, the control plane is implemented in a ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/1408H04L63/20
Inventor 李琦庞春辉李漓春
Owner HUAWEI INT
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com