摘要
本研究围绕SDN中的虚拟化安全机制展开探讨,首先,对SDN虚拟化安全需求进行细致分析,包括物理层、链路层和应用层的安全需求。随后提出基于身份认证与授权、安全策略管理、入侵检测与防御等方面的安全服务设计和网络隔离、数据加密、应用程序安全防护等方面的安全应用设计。针对安全管理需求,设计安全配置管理、安全漏洞管理、安全合规管理和安全审计与日志管理四个管理模块。通过本研究,展示SDN中虚拟化安全机制设计的重要性和必要性。
This study focuses on the virtualization security mechanism of SDN.Firstly,the security requirements of SDN virtualization are analyzed in detail,including the security requirements of physical layer,link layer and applica-tion layer.Then,it puts forward the design of security service based on identity authentication and authorization,secu-rity policy management,intrusion detection and defense,network isolation,data encryption,application security pro-tection and other aspects of security application design.According to the requirements of security management,four management modules of security configuration management,security vulnerability management,security compliance management and security audit as well as log management are designed.Through this research,we show the impor-tance and necessity of the design of virtualization security mechanism in SDN.
作者
袁超
Yuan Chao(Hanjiang Normal University,Shiyan 442000,China)
出处
《办公自动化》
2024年第11期42-45,共4页
Office Informatization
