SDN control and forwarding method based on identity attribute
Due to the lack of effective data source authentication mechanism and the limited matching fields in software defined networking (SDN),an SDN security control and forwarding method based on identity attribute was proposed.Attribute identification and attribute signature were generated by device attr...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Editorial Department of Journal on Communications
2019-11-01
|
| Series: | Tongxin xuebao |
| Subjects: | |
| Online Access: | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2019232/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841539349274951680 |
|---|---|
| author | Xianwei ZHU Chaowen CHANG Zhiqiang ZHU Xi QIN |
| author_facet | Xianwei ZHU Chaowen CHANG Zhiqiang ZHU Xi QIN |
| author_sort | Xianwei ZHU |
| collection | DOAJ |
| description | Due to the lack of effective data source authentication mechanism and the limited matching fields in software defined networking (SDN),an SDN security control and forwarding method based on identity attribute was proposed.Attribute identification and attribute signature were generated by device attributes and encapsulated in the group header.When the data flow left the network,the data was verified by the forwarding device to ensure the validity of the data flow.At the same time,attribute identification was defined as a match field of flow by the framework,and the network forwarding behavior was defined based on attributeidentification.A fine-grained access control was implemented by the proposed mechanism and attribute-based signature.The proposed mechanism and attribute-based signature implemented a fine-grained access control.Experimental results demonstrate that the method can effectively implement fine-grained forwarding and flow authentication,and the forwarding granularity is higher than that of similar schemes. |
| format | Article |
| id | doaj-art-5e313e35b6b24aec8b00564b4e919c53 |
| institution | Kabale University |
| issn | 1000-436X |
| language | zho |
| publishDate | 2019-11-01 |
| publisher | Editorial Department of Journal on Communications |
| record_format | Article |
| series | Tongxin xuebao |
| spelling | doaj-art-5e313e35b6b24aec8b00564b4e919c532025-01-14T07:18:11ZzhoEditorial Department of Journal on CommunicationsTongxin xuebao1000-436X2019-11-014011859731774SDN control and forwarding method based on identity attributeXianwei ZHUChaowen CHANGZhiqiang ZHUXi QINDue to the lack of effective data source authentication mechanism and the limited matching fields in software defined networking (SDN),an SDN security control and forwarding method based on identity attribute was proposed.Attribute identification and attribute signature were generated by device attributes and encapsulated in the group header.When the data flow left the network,the data was verified by the forwarding device to ensure the validity of the data flow.At the same time,attribute identification was defined as a match field of flow by the framework,and the network forwarding behavior was defined based on attributeidentification.A fine-grained access control was implemented by the proposed mechanism and attribute-based signature.The proposed mechanism and attribute-based signature implemented a fine-grained access control.Experimental results demonstrate that the method can effectively implement fine-grained forwarding and flow authentication,and the forwarding granularity is higher than that of similar schemes.http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2019232/software defined networkingattribute identificationforwarding control mechanismattribute signatureaccess controllow matching |
| spellingShingle | Xianwei ZHU Chaowen CHANG Zhiqiang ZHU Xi QIN SDN control and forwarding method based on identity attribute Tongxin xuebao software defined networking attribute identification forwarding control mechanism attribute signature access control low matching |
| title | SDN control and forwarding method based on identity attribute |
| title_full | SDN control and forwarding method based on identity attribute |
| title_fullStr | SDN control and forwarding method based on identity attribute |
| title_full_unstemmed | SDN control and forwarding method based on identity attribute |
| title_short | SDN control and forwarding method based on identity attribute |
| title_sort | sdn control and forwarding method based on identity attribute |
| topic | software defined networking attribute identification forwarding control mechanism attribute signature access control low matching |
| url | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2019232/ |
| work_keys_str_mv | AT xianweizhu sdncontrolandforwardingmethodbasedonidentityattribute AT chaowenchang sdncontrolandforwardingmethodbasedonidentityattribute AT zhiqiangzhu sdncontrolandforwardingmethodbasedonidentityattribute AT xiqin sdncontrolandforwardingmethodbasedonidentityattribute |