Netinfo Security ›› 2021, Vol. 21 ›› Issue (6): 70-79.doi: 10.3969/j.issn.1671-1122.2021.06.009

Previous Articles     Next Articles

Secure Interaction Scheme between SDN Application Plane and Control Plane

FAN Guangyu1, WANG Xingwei1(), JIA Jie1, HUANG Min2   

  1. 1. College of Computer Science and Engineering, Northeastern University, Shenyang 110169, China
    2. College of Information Science and Engineering, Northeastern University, Shenyang 110819, China
  • Received:2021-01-27 Online:2021-06-10 Published:2021-07-01
  • Contact: WANG Xingwei E-mail:wangxw@mail.neu.edu.cn

Abstract:

Software defined networking (SDN) brings new challenges to network security while promoting network innovation. This paper studies the secure interaction scheme between SDN application plane and control plane to ensure that SDN can provide reliable network services. Firstly, this paper proposes the overall architecture of the secure interaction scheme between SDN application plane and control plane. Secondly, the TLS protocol is used to complete the two-way authentication and secure communication between the application and the controller agent. At the same time, application authority management and application identity information management are designed to ensure that applications can access the controller securely and reasonably. Then, flow rule conflict detection and reconciliation algorithms are proposed to ensure the correct implementation of network policies. Finally, the system is implemented based on Floodlight and Mininet and compared with the existing SDN application identity authentication mechanisms and authority management mechanisms. The experimental results show that the delay introduced by the secure interaction scheme between SDN application plane and control plane proposed in this paper is acceptable.

Key words: software defined networking, application plane, control plane, secure interaction

CLC Number: