Tsinghua Science and Technology

2017, v.22(04) 400-412

[打印本页] [关闭]
本期目录 | 过刊浏览 | 高级检索

Route Guardian: Constructing Secure Routing Paths in Software-Defined Networking
Route Guardian: Constructing Secure Routing Paths in Software-Defined Networking

Mengmeng Wang;Jianwei Liu;Jian Mao;Haosu Cheng;Jie Chen;Chan Qi;

摘要(Abstract):

Software-Defined Networking(SDN) decouples the control plane and the data plane in network switches and routers, which enables the rapid innovation and optimization of routing and switching configurations. However,traditional routing mechanisms in SDN, based on the Dijkstra shortest path, do not take the capacity of nodes into account, which may lead to network congestion. Moreover, security resource utilization in SDN is inefficient and is not addressed by existing routing algorithms. In this paper, we propose Route Guardian, a reliable securityoriented SDN routing mechanism, which considers the capabilities of SDN switch nodes combined with a Network Security Virtualization framework. Our scheme employs the distributed network security devices effectively to ensure analysis of abnormal traffic and malicious node isolation. Furthermore, Route Guardian supports dynamic routing reconfiguration according to the latest network status. We prototyped Route Guardian and conducted theoretical analysis and performance evaluation. Our results demonstrate that this approach can effectively use the existing security devices and mechanisms in SDN.

关键词(KeyWords):

Abstract:

Keywords:

基金项目(Foundation): supported in part by the National Natural Science Foundation of China (Nos. 61402029, 61370190, and 61379002);; the National Key Basic Research Program (973) of China (No. 2012CB315905)

作者(Author): Mengmeng Wang;Jianwei Liu;Jian Mao;Haosu Cheng;Jie Chen;Chan Qi;

Email:

参考文献(References):

扩展功能
本文信息
服务与反馈
本文关键词相关文章
本文作者相关文章
中国知网
分享