CN106330965B - The Synergistic method of multi-controller collaborative platform based on OpenFlow agreement - Google Patents
The Synergistic method of multi-controller collaborative platform based on OpenFlow agreement Download PDFInfo
- Publication number
- CN106330965B CN106330965B CN201610910535.1A CN201610910535A CN106330965B CN 106330965 B CN106330965 B CN 106330965B CN 201610910535 A CN201610910535 A CN 201610910535A CN 106330965 B CN106330965 B CN 106330965B
- Authority
- CN
- China
- Prior art keywords
- controller
- collaborative platform
- interchanger
- message
- key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0654—Management of faults, events, alarms or notifications using network fault recovery
- H04L41/0663—Performing the actions predefined by failover planning, e.g. switching to standby network elements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0896—Bandwidth or capacity management, i.e. automatically increasing or decreasing capacities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L47/00—Traffic control in data switching networks
- H04L47/10—Flow control; Congestion control
- H04L47/12—Avoiding congestion; Recovering from congestion
- H04L47/125—Avoiding congestion; Recovering from congestion by balancing the load, e.g. traffic engineering
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/16—Implementing security features at a particular protocol layer
- H04L63/166—Implementing security features at a particular protocol layer at the transport layer
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0838—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3236—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
- H04L9/3242—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving keyed hash functions, e.g. message authentication codes [MACs], CBC-MAC or HMAC
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Power Engineering (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The present invention discloses a kind of Synergistic method of multi-controller collaborative platform based on OpenFlow agreement, and multi-controller collaborative platform includes controller secure link block, interchanger credential key memory module, load balancing module, failover policy module.Multi-controller collaborative platform is established on controller plane, communication between controller and multi-controller collaborative platform uses the verifying based on message authentication code, to guarantee that the message that multi-controller collaborative platform is received sends square controller actually from true, and be the message that do not modified, it is authenticated between controller and interchanger using improved secure transfer protocol TLS;Multi-controller collaborative platform passes through the status information for collecting each controller simultaneously, so that distributing policy realizes that load balancing and failure between multi-controller shift.
Description
Technical field
The present invention relates to Computer Applied Technologies, and in particular to a kind of multi-controller collaboration based on OpenFlow agreement is flat
The Synergistic method of platform.
Background technique
As constantly expanding for network size is increasing with network interconnection apparatus, network interconnection, traditional network is faced with increasingly
More problems, such as the management to the network equipment, the extension to network and extension, the centralized control to network.Software defined network
Network is as a kind of novel network architecture, by that will control plane and data planar separation, to realize the spirit to network flow
Control living, control plane are responsible for generating forwarding strategy and provide the interface of exploitation to application layer, and data plane is responsible for data packet
Forwarding.SDN centralized control reduces the management and configuration of complex network, but with the increasing of the expansion of network size and demand for services
Add, the stream of a large amount of interchangers is requested and the extension of control plane, single centralized controller have been unable to satisfy entire net
The performance requirement of network, this promotes the generations of multi-controller framework.
Multi-controller cooperate can more convenient realization network is extended and the management to the network equipment,
Data synchronization is completed by East and West direction interface between controller and the management to the whole network, multi-controller framework solve single control
The problem of low scalability and high load of device, while the framework of multi-controller also brings problem.Communication between multi-controller
Lack safety standard, existing OpenFlow agreement only gives the communication specification of controller and inter-exchange, but and not specified
The specific security protocol and standard communicated between multiple controllers, thus the communication between multiple controllers be still faced with certification,
The safety problem of data synchronization etc.;The load balancing between multi-controller how is realized simultaneously to reach effective benefit of resource
With, how to realize between multi-controller failure transfer, avoid the failure of single controller from leading to the paralysis of network, these be also more control
Device framework facing challenges processed.
Summary of the invention
Goal of the invention: it is an object of the invention to solve the deficiencies in the prior art, one kind is provided and is based on
The Synergistic method of the multi-controller collaborative platform of OpenFlow agreement.
A kind of technical solution: collaborative party of the multi-controller collaborative platform based on OpenFlow agreement of the present invention
Method, the multi-controller collaborative platform include controller secure link block, interchanger credential key memory module, load balancing
Policy module and failover policy module, specifically includes the following steps:
(1) message authentication is based on by using between controller secure link block multi-controller collaborative platform and controller
The secure communication mechanism of code, prevents attacker to be linked into controller, and multi-controller collaborative platform provides effective trust evaluation;
(2) the safe transmission TLS between controller and interchanger was authenticated by interchanger credential key memory module
Journey improves, allow respective switch generate polymerization certificate, and with controller carry out safety certification, and by the certificate of interchanger with
Key is stored in multi-controller collaborative platform;
(3) the load feelings of each controller of the whole network are persistently checked by load balancing module multi-controller collaborative platform
Condition, and formulate corresponding load-balancing algorithm;
(4) persistently check whether each controller of the whole network is in by failover policy module multi-controller collaborative platform
Normal operating conditions, when finding that some controller breaks down, execute failover policy in time, and by failed controller
The certificate and key of the interchanger of management are sent to the controller that will be connected and are authenticated.
Further, the detailed process of the step (1) are as follows:
(11) before the message, common hash is consulted between each controller and multi-controller collaborative platform first
Function and key;
(12) when controller sends message to multi-controller collaborative platform, hash letter that controller is consulted using both sides
The several and cipher key calculation hashed value MAC that obtain message corresponding, and message and MAC are sent jointly into multi-controller collaboration and put down
Platform;
(13) when multi-controller collaborative platform receives message and MAC, while being disappeared using the hash function calculating consulted
The hashed value of breath, the hashed value that this is locally calculated and the MAC received compare, if the two is equal, message passes through certification.
Further, the detailed process of the step (2) are as follows:
(21) certificate of all interchangers and key are sent to by root node interchanger using depth-first traversal, the root section
The certificate of all interchangers and key are sent to controller and uniformly carry out TLS safety certification by point interchanger;
(22) certificate of all interchangers within the scope of the domain and key are stored in multi-controller collaborative platform by controller.
Further, the detailed process of the step (3) are as follows:
(31) multi-controller collaborative platform be arranged load balancing coefficient LB and float factor FL, such as it is initial when setting LB be
0.8, FL 0.2, when relatively high to load balancing required precision, just suitably change the numerical value of parameter;
(32) multi-controller collaborative platform at regular intervals (such as can be 30s), counts what each controller received
Load of the quantity CP of Packet-in message as each controller itself, and the connected interchanger of the controller is counted respectively
Issue the Packet-in message number SP of controller this period;
(33) multi-controller collaborative platform calculates each controller load C P's according to the controller load information received
Average value AVG_CP, and maximum value MAX_CP and minimum value MIN _ CP in the load C P of each controller are filtered out, then count
Calculate AVG_CP/MAX_CP;
(34) when AVG_CP/MAX_CP is not in the section (LB-FL, LB+FL), it is carried out load balancing;
(35) when needing to be implemented load balancing, multi-controller collaborative platform just filters out the maximum controller of load
It is the smallest to be transferred to load by modifying the role of controller by the maximum interchanger of SP in connected interchanger for this interchanger
Controller is controlled.
Further, the detailed process of the step (4) are as follows:
(41) multi-controller collaborative platform persistently monitors the state of each controller, has detected whether that controller breaks down:
When detecting that certain controller breaks down, multi-controller collaborative platform, which is selected, loads the smallest control in remaining controller
The interchanger of failed controller management is transferred to this controller and controlled by device by modifying its role;
(42) key and certificate that are stored in the interchanger of multi-controller collaborative platform this controller is sent to recognize
Card avoids these interchangers from being authenticated again to controller transmission certificate and key.
The utility model has the advantages that it is of the invention, it has the advantage that compared with prior art
(1) present invention considers the attacker in actual scene there may be forgery and is linked into controller, obtains network
Topological structure and the problem of steal and modify network data, cause network paralysis;The present invention allows controller and multi-controller to assist
The verifying based on message authentication code is used with the communication between platform, multi-controller collaborative platform can trust that message is not modified,
Because if attacker changes message, but he can not change corresponding MAC, so multi-controller collaborative platform is calculated
MAC will be equal to the MAC received;Multi-controller collaborative platform can trust that message be from true controller C because its
His each side does not know key, therefore forgery side cannot be generated with correct MAC, ensures that multi-controller collaboration is flat in this way
Communication security between platform and controller.
(2) present invention considers in the communication specification of OpenFlow agreement, using safety between controller and interchanger
Transport protocol TLS is encrypted and is authenticated to message, which is related to repeatedly shaking hands and validation of information step, this operation are more numerous
It is trivial.The present invention improves the verification process of controller and interchanger, and respective switch is allowed to generate polymerization certificate, unify and controller
The safety certification based on TLS is carried out, and the certificate of interchanger and key are stored in multi-controller collaborative platform, avoids controller
With each interchanger carry out repeatedly it is cumbersome shake hands and validation of information, improve the safety certification between control layer and basis instrument
Efficiency, while also saving bandwidth.
(3) present invention considers the problem of load balancing between multi-controller, and multi-controller collaborative platform persistently monitors entirely
The loading condition of each controller is netted, and formulates corresponding algorithm, realizes the load balancing between each controller.
(4) present invention considers the failure branch problem between multi-controller, and multi-controller collaborative platform persistently monitors entirely
The state for netting each controller executes the strategy of failure transfer in time, realizes control when finding that some controller breaks down
The dynamic transfer of device failure processed.
Detailed description of the invention
Fig. 1 is overall structure diagram of the invention;
Fig. 2 is the schematic diagram of secure communication in step of the present invention (1);
Fig. 3 is the schematic diagram of safety certification in step of the present invention (2);
Fig. 4 is the specific flow chart of load balancing in step of the present invention (3);
Fig. 5 is the specific flow chart of failover policy in step of the present invention (4).
Specific embodiment
Technical solution of the present invention is described in detail below, but protection scope of the present invention is not limited to the implementation
Example.
As shown in Figure 1, being controlled the present invention is based in the Synergistic method of the multi-controller collaborative platform of OpenFlow agreement
A multi-controller collaborative platform is established in device plane, multi-controller collaborative platform is by controller secure link block, interchanger
This 4 module compositions of credential key memory module, load balancing module and failover policy module.
Wherein, controller secure link block is responsible for the secure connection of collaborative platform and controller, interchanger credential key
Memory module is responsible for managing the certificate and key of interchanger, and load balancing module is responsible for realizing the load balancing of each controller,
Failover module is responsible for realizing the fault recovery of each controller.
Communication between controller and multi-controller collaborative platform uses the verifying based on message authentication code, to guarantee more controls
The message that device collaborative platform is received sends square controller actually from true, and is the message that do not modified, controller with
It is authenticated between interchanger using improved secure transfer protocol TLS;Multi-controller collaborative platform is each by collecting simultaneously
The status information of controller, so that distributing policy realizes that load balancing and failure between multi-controller shift.
As shown in Fig. 2, controller and multi-controller collaborative platform secure communication process in the present invention are as follows: multi-controller collaboration
The secure communication mechanism based on message authentication code is used between platform and controller, controller and multi-controller collaborative platform are common
The key of negotiation can be set to 0xFFFF, and hash function, which can be, is mapped as shaped digital, and and key for message character string
0xFFFF carries out exclusive or, generates message authentication code.When controller connects multi-controller collaborative platform, controller is to multi-controller
The requestconnect message encryption that collaborative platform is sent is requestconnect577b, and multi-controller collaborative platform receives
It is calculated to message requestconnect577b by calculating MAC using hash function to message requestconnect
577b, it is identical with the message authentication code that receives, illustrate to authenticate successfully, if certification is unsuccessful, multi-controller collaborative platform will be refused
The connection request of exhausted controller.
As shown in figure 3, in the present invention controller and interchanger safety certification detailed process are as follows: this programme using depth it is excellent
It first traverses and the certificate of all interchangers and key is sent to root node interchanger, this interchanger is by the certificate of all interchangers
Controller is sent to key uniformly to be authenticated, after certification, controller by the certificate of all interchangers within the scope of the domain with it is close
Key is stored in multi-controller collaborative platform.Controller does not need repeatedly to be shaken hands with each interchanger in this way and information is true
Recognize, only needs and all interchangers carry out primary unified certification, and when some controller breaks down, multi-controller will be stored in
The certificate and key of the interchanger of collaborative platform are sent to new controller and are authenticated, and avoid these interchangers again to control
Device processed sends certificate and key is authenticated, and saves bandwidth, while also improving resource utilization.
As shown in figure 4, in the present invention load balancing detailed process are as follows: the basic load of controller derives from
Packet-in message, multi-controller collaborative platform count the Packet-in message that each controller receives at regular intervals
Load of the quantity CP as each controller itself, and count the controller respectively and issue control connected interchanger this period
The Packet-in message number SP of device.Collaborative platform calculates each controller load according to the controller load information received
The average value AVG_CP of CP, and maximum value MAX_CP and minimum value MIN _ CP in the load C P of each controller are calculated, so
After calculate AVG_CP/MAX_CP, this value is floated smaller in a certain range, and the load of each controller is more balanced.Setting one
A load balancing coefficient LB and float factor FL is carried out when AVG_CP/MAX_CP is not in the section (LB-FL, LB+FL)
Load balancing, it is 0.8, FL 0.2 that LB, which is arranged, in we when initial, can be with when relatively high to load balancing required precision
The appropriate numerical value for changing parameter.When needing to be implemented load balancing, it is maximum that multi-controller collaborative platform just filters out load
The connected interchanger of controller in the maximum interchanger of SP, by modify controller role, this interchanger is transferred to negative
It carries the smallest controller to be controlled, it can be achieved that load balancing in local area network between all controllers after such a period of time.
As shown in figure 5, in the present invention failover policy detailed process are as follows: multi-controller collaborative platform be responsible for management control
The role of device processed, role is handed down to controller by the REST-API that controller provides by multi-controller collaborative platform when initial,
And continue to monitor the state of each controller, detect whether that controller breaks down.When detecting that certain controller breaks down
When, multi-controller collaborative platform, which is selected, loads the smallest controller in remaining controller, by modifying its role, by failure control
The interchanger of device management processed is transferred to this controller and is controlled, and will be stored in multi-controller collaborative platform interchanger it is close
Key and certificate are issued this controller and are authenticated, and the failure transfer of more control rooms may be implemented in this way, and avoid these friendships
It changes planes and is authenticated again to controller transmission certificate and key.
Claims (3)
1. a kind of Synergistic method of the multi-controller collaborative platform based on OpenFlow agreement, it is characterised in that: more controls
Device collaborative platform includes controller secure link block, interchanger credential key memory module, load balancing module and event
Hinder transition strategy module, specifically includes the following steps:
(1) by using between controller secure link block multi-controller collaborative platform and controller based on message authentication code
Secure communication mechanism, prevents attacker to be linked into controller, and multi-controller collaborative platform provides effective trust evaluation;
(2) by interchanger credential key memory module to the safe transmission TLS verification process between controller and interchanger into
Row improves, and allows respective switch to generate polymerization certificate, and carry out safety certification with controller, and by the certificate and key of interchanger
It is stored in multi-controller collaborative platform;
(3) loading condition of each controller of the whole network is persistently checked by load balancing module multi-controller collaborative platform,
And formulate corresponding load-balancing algorithm;
(4) persistently check whether each controller of the whole network is in normal by failover policy module multi-controller collaborative platform
Working condition executes failover policy when finding that some controller breaks down in time, and by failed controller management
The certificate and key of interchanger are sent to the controller that will be connected and are authenticated;
Wherein, the detailed content of the step (2) are as follows:
(21) certificate of all interchangers and key are sent to by root node interchanger using depth-first traversal, which hands over
It changes planes and the certificate of all interchangers and key are sent to controller uniformly carry out TLS safety certification;(22) controller is by its institute
The certificate of all interchangers and key are stored in multi-controller collaborative platform within the scope of domain;
The detailed process of the step (3) are as follows:
(31) load balancing coefficient LB and float factor FL is set when multi-controller collaborative platform is initial, when to load balancing precision
It is required that just suitably changing the numerical value of parameter when relatively high;(32) multi-controller collaborative platform counts each control at regular intervals
Load of the quantity CP for the Packet-in message that device processed receives as each controller itself, and the controller is counted respectively
The connected Packet-in message number SP for issuing controller interchanger this period;(33) multi-controller collaborative platform is according to receipts
The controller load information arrived, calculates the average value AVG_CP of each controller load C P, and filters out each controller
Maximum value MAX_CP and minimum value MIN _ CP in load C P, then calculate AVG_CP/MAX_CP;(34) work as AVG_CP/
When MAX_CP is not in the section (LB-FL, LB+FL), it is carried out load balancing;(35) when needing to be implemented load balancing
When, multi-controller collaborative platform just filters out the maximum interchanger of SP in maximum the connected interchanger of controller of load, by repairing
This interchanger is transferred to the smallest controller of load and controlled by the role for changing controller.
2. the Synergistic method of the multi-controller collaborative platform according to claim 1 based on OpenFlow agreement, feature
It is: the detailed process of the step (1) are as follows:
(11) before the message, common hash function is consulted between each controller and multi-controller collaborative platform first
And key;
(12) when controller sends message to multi-controller collaborative platform, hash function that controller is consulted using both sides and
Cipher key calculation obtains the corresponding hashed value MAC of message, and message and MAC are sent jointly to multi-controller collaborative platform;
(13) when multi-controller collaborative platform receives message and MAC, while message is calculated using the hash function consulted
Hashed value, the hashed value that this is locally calculated and the MAC received compare, if the two is equal, message passes through certification.
3. the Synergistic method of the multi-controller collaborative platform according to claim 1 based on OpenFlow agreement, feature
It is: the detailed process of the step (4) are as follows:
(41) multi-controller collaborative platform persistently monitors the state of each controller, has detected whether that controller breaks down: having worked as inspection
When measuring certain controller failure, multi-controller collaborative platform, which is selected, loads the smallest controller in remaining controller,
By modifying its role, the interchanger of failed controller management is transferred to this controller and is controlled;
(42) key of the interchanger for the failed controller management for being stored in multi-controller collaborative platform and certificate are sent to this
Controller is authenticated, these interchangers is avoided to be authenticated again to controller transmission certificate and key.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610910535.1A CN106330965B (en) | 2016-10-19 | 2016-10-19 | The Synergistic method of multi-controller collaborative platform based on OpenFlow agreement |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610910535.1A CN106330965B (en) | 2016-10-19 | 2016-10-19 | The Synergistic method of multi-controller collaborative platform based on OpenFlow agreement |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106330965A CN106330965A (en) | 2017-01-11 |
CN106330965B true CN106330965B (en) | 2019-03-29 |
Family
ID=57818991
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610910535.1A Active CN106330965B (en) | 2016-10-19 | 2016-10-19 | The Synergistic method of multi-controller collaborative platform based on OpenFlow agreement |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106330965B (en) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109905275A (en) * | 2019-01-28 | 2019-06-18 | 华南理工大学 | A kind of detection of control plane failure and processing method based on SDN layer architecture |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103354525A (en) * | 2013-06-08 | 2013-10-16 | 中国科学院计算机网络信息中心 | System and method for realizing wide area network anycast load balancing based on OpenFlow |
CN104980296A (en) * | 2014-04-11 | 2015-10-14 | 华为技术有限公司 | OpenFlow multi-controller system and management method thereof |
CN105933125A (en) * | 2016-07-07 | 2016-09-07 | 北京邮电大学 | Method and device for southing security authentication in software-defined networking |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9306801B2 (en) * | 2014-04-24 | 2016-04-05 | Aruba Networks, Inc. | Select on of anchor controllers for client devices within a network environment |
-
2016
- 2016-10-19 CN CN201610910535.1A patent/CN106330965B/en active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103354525A (en) * | 2013-06-08 | 2013-10-16 | 中国科学院计算机网络信息中心 | System and method for realizing wide area network anycast load balancing based on OpenFlow |
CN104980296A (en) * | 2014-04-11 | 2015-10-14 | 华为技术有限公司 | OpenFlow multi-controller system and management method thereof |
CN105933125A (en) * | 2016-07-07 | 2016-09-07 | 北京邮电大学 | Method and device for southing security authentication in software-defined networking |
Non-Patent Citations (2)
Title |
---|
BalanceFlow: Controller load balancing for OpenFlow networks;YannanHu,Wendong Wang,Xiangyang Gong,Xirong Que,Shiduan Cheng;《2012 IEEE 2nd International Conference on Cloud Computing and Intelligence Systems》;20131114;780-785 |
基于SDN网络的负载均衡和流量工程技术的研究;林群峰;《中国优秀硕士学位论文全文数据库》;20151215;全文 |
Also Published As
Publication number | Publication date |
---|---|
CN106330965A (en) | 2017-01-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2021203733A1 (en) | Power edge gateway device and device-based sensor data uplink storage method | |
AU2017272163B2 (en) | Verification system and method with extra security for lower-entropy input records | |
US11902290B2 (en) | Systems and methods for hybrid blockchain control | |
US8255977B2 (en) | Trusted network connect method based on tri-element peer authentication | |
CN103929422B (en) | Trusted inter-domain safety certificate protocol based on SDN | |
CN107276762A (en) | The method of work and device of a kind of multi-protocols block chain | |
CN109919771B (en) | Industrial internet transaction device applying hierarchical block chain technology | |
JP2010534988A (en) | Trusted network connect method with enhanced security | |
CN105119911B (en) | A kind of safety certifying method and system based on SDN streams | |
CN114422201B (en) | Network target range large-scale user remote access method and system | |
CN106453651A (en) | RPKI (resource public key infrastructure) database and data synchronization method | |
CN104780052A (en) | Network device group authentication method in software-defined network | |
CN106330965B (en) | The Synergistic method of multi-controller collaborative platform based on OpenFlow agreement | |
CN103780395B (en) | Network insertion proves the method and system of two-way measurement | |
Yan et al. | The research and design of cloud computing security framework | |
CN109150829A (en) | Software definition cloud network trust data distribution method, readable storage medium storing program for executing and terminal | |
CN106341256B (en) | V2G system based on software defined network and safety communication method thereof | |
CN102611704A (en) | Cloud computing node registering system and cloud computing node registering method | |
CN110166364B (en) | Software defined opportunistic network flow table updating method | |
Liu et al. | A trusted access method in software-defined network | |
CN105591928B (en) | Method of controlling security for cloud platform network | |
CN104901799A (en) | Method and device for achieving SDN certificate resource configuration | |
CN108900518A (en) | Believable software definition cloud network data distribution systems | |
Zou et al. | Dynamic provable data possession based on ranked Merkle hash tree | |
JP6070280B2 (en) | Network authentication system, network authentication apparatus, network authentication method, and network authentication program |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |