With the rapid development of the network technology, big data, cloud computing, mobile Internet, quantum communication practical technology, the informatization era continue to move forward. At the same time, the emergence of software deifned network provides technical direction for the new generation network architecture. SDN’s core idea is changing the tight coupling of the forwarding path of the traditional network control software and hardware, making the application, control and data forwarding coupled, realizing the lfexible network of control, and enhancing the security of network virtualization. From SDN technology this paper introduced the relationship between the development of network virtualization, SDN technology and network virtualization and network virtualization security, and in-depthly analyzed the security challenges faced by the current network virtualization, including security challenges faced by the physical security equipment, a controller, and a device communication. At last, this paper put forward the corresponding solutions from the safety and reliability of the network controller and authenticated devices communication mode, to the security application virtualization SDN security architecture and software deifned security scheme.%网络技术飞速发展,大数据、云计算、移动互联、量子通信等实用技术推动着信息化时代不断前行,同时,软件定义网络(SDN)的出现为新一代网络架构提供了技术方向。SDN核心思路是改变传统网络软件控制和硬件转发路径的紧耦合,使应用、控制和数据的转发解耦合,实现灵活的网络控制,也提升了网络虚拟化的安全性。文章从SDN技术入手,简要介绍了网络虚拟化的发展、SDN技术与网络虚拟化的关系以及虚拟化网络安全问题,深入分析了当前网络虚拟化面临的安全挑战,包括物理安全设备、控制器、设备间通信所面临的安全挑战。文章从可靠安全的网络控制器、可认证的设备间通信方式、基于安全应用虚拟化的SDN安全架构、软件安全定义解决方案等方面,提出了相应的解决方案。
展开▼
