SDN information access control method based on certifiable hierarchical attribute encryption

CN109412809BActive Publication Date: 2022-02-15NANJING COLLEGE OF INFORMATION TECH
6 Cites 0 Cited by

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
NANJING COLLEGE OF INFORMATION TECH
Publication Date
2022-02-15

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

An SDN information access control method based on authenticated hierarchical attribute encryption, based on a control system composed of attribute authority, SDN controller, encryption component and decryption component, the root attribute authority in the attribute authority is responsible for the registration of global attributes and the public key Publishing, the local attribute authority is responsible for publishing the private key related to a certain type of attribute, and the SDN controller is responsible for collecting, storing and managing important information including SDN flow table, routing and data volume, and interacting with SDN controllers in other domains ; The encryption component is responsible for transferring the collected user or other network device data to the SDN control layer and encrypting the data; the decryption component is responsible for obtaining useful data for different network applications, and the decryption component uses different attribute sets to describe different networks The identity of the application, and has a private key corresponding to the attribute set. Only when the attribute set embedded in the private key satisfies the access policy can the correct information be obtained.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to secure access control of SDN information, in particular to an SDN information access control method based on authentication hierarchical attribute encryption, which belongs to the field of network information security. Background technique

[0002] Software defined network (SDN for short) is an excellent network architecture, which logically separates the control layer and data layer of the network, thereby reducing the hardware cost and management cost of network construction. On this basis, administrators or developers can conveniently perform centralized debugging on devices from different manufacturers. Although it has many advantages, SDN information security issues hinder its further application. Many solutions are difficult to strike a balance between security, effectiveness, and usability, and even limit the inherent advantages of SDN such as scalability. One of the most serious problems is that because the SDN control...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More