A scalable flow rule translation implementation for software defined security

机译：用于软件定义的安全性的可扩展流规则转换实现

获取原文

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Software defined networking brings many possibilities to network security, one of the most important security challenge it can help with is the possibility to make network traffic pass through specific security devices, in other words, determine where to deploy these devices logically. However, most researches focus on high level policy and interaction framework but ignored how to translate them to low-level OpenFlow rules with scalability. We analyze different actions used in common security scenarios and resource constraints of physical switch. Based on them, we propose a rule translation implementation which can optimize the resource consumption according to different actions by selecting forward path dynamically.

机译：软件定义的网络为网络安全带来了许多可能性，它可以帮助解决的最重要的安全挑战之一是使网络流量通过特定的安全设备，换句话说，确定在逻辑上将这些设备部署在何处。但是，大多数研究都集中在高级策略和交互框架上，却忽略了如何将它们转换为具有可伸缩性的低级OpenFlow规则。我们分析了常见安全方案中使用的不同操作以及物理交换机的资源限制。在此基础上，我们提出了一种规则转换的实现方式，可以通过动态选择前向路径，根据不同的动作来优化资源消耗。

著录项

来源
《Asia-Pacific Network Operations and Management Symposium》|2014年|1-5|共5页
会议地点
作者
Hao Tu; Weiming Li; Dong Li; Junqing Yu;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
computer network security; software defined networking; common security; high level policy; low level OpenFlow rules; network security; physical switch; resource constraints; scalable flow rule translation implementation; software defined networking; software defined security; Bandwidth; Communication networks; Mirrors; Monitoring; Ports (Computers); Security; Switches; network security; softwre defined networking;

机译：计算机网络安全;软件定义的网络;通用安全性;高级策略;低级OpenFlow规则;网络安全性;物理交换机;资源约束;可扩展的流规则转换实现;软件定义的网络;软件定义的安全性;带宽;通信网络;镜像;监视;端口（计算机）;安全性;交换机;网络安全性;软件定义的网络;

相似文献

外文文献
中文文献
专利

1. Software Defined Networking Flow Table Management of OpenFlow Switches Performance and Security Challenges: A Survey [J] . Babangida Isyaku, Mohd Soperi Mohd Zahid, Maznah Bte Kamat, Future Internet . 2020,第9期

机译：软件定义网络流量表管理OpenFlow开关性能和安全挑战：调查
2. Mobi-Flow: Mobility-Aware Adaptive Flow-Rule Placement in Software-Defined Access Network [J] . Bera Samaresh, Misra Sudip, Obaidat Mohammad S. IEEE transactions on mobile computing . 2019,第8期

机译：Mobi-Flow：在软件定义的访问网络中感知移动性的自适应流规则放置
3. FlowForensic: flow rule enforcement for control plane attacks in software defined networking [J] . Nithya Sampath, Jayakumar Chinnappan International journal of reasoning-based intelligent systems . 2018,第3a4期

机译：FlowForensic：在软件定义的网络中针对控制平面攻击执行流规则
4. A scalable flow rule translation implementation for software defined security [C] . Hao Tu, Weiming Li, Dong Li, Asia-Pacific Network Operations and Management Symposium . 2014

机译：用于软件定义的安全性的可扩展流程规则转换实现
5. Implications of Implementing Software Defined Networking to Improve Cybersecurity for Operational Technology Networks [D] . Tommey, Charles R. 2018

机译：实施软件定义网络以提高运营技术网络的网络安全性的意义
6. Dynamic Construction Scheme for Virtualization Security Service in Software-Defined Networks [O] . Zhaowen Lin, Dan Tao, Zhenji Wang 2017

机译：软件定义网络中虚拟化安全服务的动态构建方案
7. Design and Implementation of a Security Control Architecture for Software-Defined NetworkingDesign and Implementation of a Security Control Architecture for Software-Defined Networking [O] . Tie-jun LIU, Zhao-wen LIN, Jie XU 2017

机译：用于软件定义网络的安全控制架构的设计与实现，以及用于软件定义网络的安全控制架构的实施

A scalable flow rule translation implementation for software defined security

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅