Lightweight control channel communication protection method and system in OpenFlow network

A control channel, lightweight technology, applied in the field of communication, can solve the problems of low security of OpenFlow control channel, cannot be widely used, high performance consumption, etc., to simplify the process of encryption and decryption, widely used, and improve security. Effect

Active Publication Date: 2020-07-10
李子钦
View PDF7 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The purpose of the present invention is to provide a lightweight control channel communication protection method in an OpenFlow network, which can solve the problems of low security, high performance consumption and inability to be widely used in the current OpenFlow control channel
[0006] Another object of the present invention is to provide a system that applies a lightweight control channel communication protection method in an OpenFlow network, which can solve the problems of low security, high performance consumption and inability to be widely used in the current OpenFlow control channel

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Lightweight control channel communication protection method and system in OpenFlow network
  • Lightweight control channel communication protection method and system in OpenFlow network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0041] Please refer to figure 1 , figure 1 Shown is the lightweight control channel communication protection method in the OpenFlow network of this embodiment, which is applied to the OpenFlow controller and the OpenFlow switch, and includes the following steps: (1) The OpenFlow controller and the OpenFlow switch respectively preset unique seed values; 2) The seed values ​​of the OpenFlow controller and the OpenFlow switch are hashed to generate the device private key; (3) The device private key of the OpenFlow controller and the OpenFlow switch are respectively generated using an asymmetric cryptographic algorithm; (4) using the hash The Greek function processes the device public key of the OpenFlow controller, and uses the hash value of the device public key of the OpenFlow controller as the controller authentication code identifying the OpenFlow controller; (5) the device private key of the OpenFlow controller and the OpenFlow switch key and device public key through the k...

Embodiment 2

[0057] Please refer to figure 2 , this embodiment provides a system for applying the lightweight control channel communication protection method in the OpenFlow network in Embodiment 1, including a device identity generation module, a control message filtering module, a security message generation module and a policy management module.

[0058] In detail, the device identity generation module is connected with the OpenFlow controller and the OpenFlow switch to perform hashing according to the seed values ​​of the OpenFlow controller and the OpenFlow switch to generate a device private key, and hash the device private key to generate a device public key. key. The device identity generation module performs hashing according to the device public key of the OpenFlow controller to use the hash value as the controller authentication code, and uses the key agreement algorithm to generate a shared secret based on the device private key and device public key of the OpenFlow controller...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a lightweight control channel communication protection method and system in an OpenFlow network, and relates to the field of communication. The lightweight control channel communication protection method in the OpenFlow network comprises the following steps: respectively presetting unique seed values for an OpenFlow controller and an OpenFlow switch; respectively hashing thetwo seed values to generate an equipment private key; enabling the two equipment private keys to respectively generate equipment public keys by using an asymmetric cryptographic algorithm; processingthe equipment public key of the OpenFlow controller by utilizing a hash function, and taking the generated hash value as a controller message authentication code for identifying the OpenFlow controller; and the OpenFlow controller and the equipment private key and the equipment public key of the OpenFlow switch generate a shared key through a key negotiation algorithm. According to the invention,the problems of low communication security and high energy consumption of the OpenFlow network are solved.

Description

technical field [0001] The present invention relates to the communication field, in particular, to a light-weight control channel communication protection method and system in an OpenFlow network. Background technique [0002] In traditional networks, a control plane that integrates multiple network functions and a data plane that is responsible for forwarding data packets are tightly coupled, and are usually embedded in a proprietary device, which severely limits the flexible management of the network and network services Potential for innovation. Software-Defined Networking (Software-Defined Networking, hereinafter referred to as "SDN"), as a promising network architecture, provides a "programmable network" implementation method by decoupling the control plane from the data plane. SDN enables network operators to flexibly and rapidly manage, configure and optimize network resources using dynamic, automated and device-independent applications. [0003] In SDN, due to the ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L9/06
CPCH04L63/0442H04L63/20H04L9/0643H04L63/083H04L63/0227
Inventor 李子钦
Owner 李子钦
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap