A SDN-based Deployment Framework for Computer Network Defense Policy

被引:0
作者
Gao, Jinghua [1 ]
Xia, Chunhe [1 ]
Wang, Shuguang [1 ]
Zhang, Huajun [1 ]
机构
[1] Beihang Univ, Sch Comp Sci, Beijing Key Lab Network Technol, Beijing, Peoples R China
来源
PROCEEDINGS OF 2015 4TH INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND NETWORK TECHNOLOGY (ICCSNT 2015) | 2015年
关键词
Software Defined Networking (SDN); Computer Network Defense (CDN); Policy Deployment; OpenFlow; OpenStack;
D O I
暂无
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
Computer Network Defense Policy is a kind of policy-based network management method which aims to achieve specific security objectives. Although it brings much efficiency in the field of computer network defense, it can't be widely used because the existing Computer Network Defense Policy models are all proposed on P2DRR architecture and lack specific deployment framework as well as methods. In this paper, we utilize programmability and centralized control of software defined networking and propose a SDN-based deployment framework. Also, we come up with defense selection method and "traffic steering" method for policy deployment. The implementation and experiments in cloud environment shows that under the proposed framework, we can execute the process of policy resolution and configuration deployment automatically and correctly.
引用
收藏
页码:1253 / 1258
页数:6
相关论文
共 14 条
  • [1] Cuppens F, 2005, INT FED INFO PROC, V173, P203
  • [2] Hu J., 2012, CONSISTENCY VERIFICA
  • [3] Kaklamanis C., 1992, SIMPLE PATH SELECTIO
  • [4] Kalam A. A. E., 2003, ORG BASED ACCESS CON
  • [5] Improving Network Management with Software Defined Networking
    Kim, Hyojoon
    Feamster, Nick
    [J]. IEEE COMMUNICATIONS MAGAZINE, 2013, 51 (02) : 114 - 119
  • [6] Mi X., 2014, NO STACK SDN BASED F
  • [7] A Survey of Software-Defined Networking: Past, Present, and Future of Programmable Networks
    Nunes, Bruno Astuto A.
    Mendonca, Marc
    Xuan-Nam Nguyen
    Obraczka, Katia
    Turletti, Thierry
    [J]. IEEE COMMUNICATIONS SURVEYS AND TUTORIALS, 2014, 16 (03) : 1617 - 1634
  • [8] Preda S., 2009, ARXIV09051362
  • [9] Qazi Z A., 2013, SIMPLE FYING MIDDLEB
  • [10] Ren X., 2011, INT C CLOUD COMP INT