{"title":"基于入侵检测技术的SDN控制器安全集群方案","authors":"Xiaofeng Xu, Ji Dai, Gao Yang","doi":"10.12783/dtcse/msam2020/34235","DOIUrl":null,"url":null,"abstract":"Software Defined Network (SDN) is a new network innovation architecture that separates the control layer and the data layer of the network. In the SDNs, the control layer is the core of the entire network, and its security is very important. In practical applications, the control layer is usually composed of SDN controller clusters. In order to enhance the security of the SDN controller cluster, this paper first studies the development status of the current SDN technology, and then analyzes the current state of the defense technology of the network system. Through the analysis and summary of the two, we proposed the discovery and isolation scheme of the invaded controller in the cluster environment, and designed the intrusion detection module, control module and defense module. Finally, we implemented the scheme based on Opendaylight controller, and proved the effectiveness of the scheme by experiments.","PeriodicalId":11066,"journal":{"name":"DEStech Transactions on Computer Science and Engineering","volume":"123 12 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2020-05-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"An SDN Controller Security Cluster Scheme Based on Intrusion Detection Technology\",\"authors\":\"Xiaofeng Xu, Ji Dai, Gao Yang\",\"doi\":\"10.12783/dtcse/msam2020/34235\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Software Defined Network (SDN) is a new network innovation architecture that separates the control layer and the data layer of the network. In the SDNs, the control layer is the core of the entire network, and its security is very important. In practical applications, the control layer is usually composed of SDN controller clusters. In order to enhance the security of the SDN controller cluster, this paper first studies the development status of the current SDN technology, and then analyzes the current state of the defense technology of the network system. Through the analysis and summary of the two, we proposed the discovery and isolation scheme of the invaded controller in the cluster environment, and designed the intrusion detection module, control module and defense module. Finally, we implemented the scheme based on Opendaylight controller, and proved the effectiveness of the scheme by experiments.\",\"PeriodicalId\":11066,\"journal\":{\"name\":\"DEStech Transactions on Computer Science and Engineering\",\"volume\":\"123 12 1\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-05-03\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"DEStech Transactions on Computer Science and Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.12783/dtcse/msam2020/34235\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"DEStech Transactions on Computer Science and Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.12783/dtcse/msam2020/34235","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
An SDN Controller Security Cluster Scheme Based on Intrusion Detection Technology
Software Defined Network (SDN) is a new network innovation architecture that separates the control layer and the data layer of the network. In the SDNs, the control layer is the core of the entire network, and its security is very important. In practical applications, the control layer is usually composed of SDN controller clusters. In order to enhance the security of the SDN controller cluster, this paper first studies the development status of the current SDN technology, and then analyzes the current state of the defense technology of the network system. Through the analysis and summary of the two, we proposed the discovery and isolation scheme of the invaded controller in the cluster environment, and designed the intrusion detection module, control module and defense module. Finally, we implemented the scheme based on Opendaylight controller, and proved the effectiveness of the scheme by experiments.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
