现代计算机(专业版)
現代計算機(專業版)
현대계산궤(전업판)
MODERN COMPUTER
2014年
14期
6-10,17
,共6页
软件定义网络%虚拟化应用扩展%软件定义安全%OpenFlow
軟件定義網絡%虛擬化應用擴展%軟件定義安全%OpenFlow
연건정의망락%허의화응용확전%연건정의안전%OpenFlow
Software Defined Security(SDN)%Virtualized Security Appliance%OpenFlow
采用控制、转发分离架构的软件定义网络(SDN)为网络的可编程性与开放性提供极大便利,但也给网络的安全性带来诸多挑战。提出一种虚拟安全网络(Virtualized Security Networks)与数据层中间盒扩展相结合的SDN安全架构,给出该架构的实现要点,并以实验验证其架构实现。测试表明该架构较其他方式具有更好的性能与可扩展性,同时其更有利于传统网络环境下的安全保障机制面向SDN网络架构的过渡迁徙。
採用控製、轉髮分離架構的軟件定義網絡(SDN)為網絡的可編程性與開放性提供極大便利,但也給網絡的安全性帶來諸多挑戰。提齣一種虛擬安全網絡(Virtualized Security Networks)與數據層中間盒擴展相結閤的SDN安全架構,給齣該架構的實現要點,併以實驗驗證其架構實現。測試錶明該架構較其他方式具有更好的性能與可擴展性,同時其更有利于傳統網絡環境下的安全保障機製麵嚮SDN網絡架構的過渡遷徙。
채용공제、전발분리가구적연건정의망락(SDN)위망락적가편정성여개방성제공겁대편리,단야급망락적안전성대래제다도전。제출일충허의안전망락(Virtualized Security Networks)여수거층중간합확전상결합적SDN안전가구,급출해가구적실현요점,병이실험험증기가구실현。측시표명해가구교기타방식구유경호적성능여가확전성,동시기경유리우전통망락배경하적안전보장궤제면향SDN망락가구적과도천사。
Software Defined Networking is in its fast growth in the past years. Its software programmable architecture and openness brings many of new security challenges. Proposes a novel SDS security architecture based on Virtuallzed Security Networks. Discusses the critical fea-tures and use cases of VSN security model in detail, and also verificates its implementation by testing. The analysis shows that the VSN security architecture has better performance and scalabilities with compared with other security models.
