您所在的位置:首页 > 通信与网络 > 设计应用 > 面向针对性攻击的SDVN控制层鲁棒性方案
毛 明1,伊 鹏1,张 震1,马 云2
1.解放军战略支援部队信息工程大学,河南 郑州450001;2.68002部队,甘肃 兰州730000
摘要: 将软件定义网络应用于车联网能显著提升其性能,但该方法也面临传统SDN要应对的安全问题。基于软件定义车联网体系架构中控制平面可能面临的针对性节点攻击问题,提出一种鲁棒的控制器放置方法。该方法结合传统的SDN控制平面部署问题,首先将控制平面鲁棒性问题建模为交换机与控制器的连通冗余性问题,提升交换机在极端情形下与控制器的连通性;其次设计一个鲁棒性指标,以衡量控制平面鲁棒性。仿真结果表明,该方法的鲁棒性要优于基于时延可靠性的部署方案。
中图分类号: TN919.2;TP393.0
文献标识码: A
中文引用格式: 毛明,伊鹏,张震,等. 面向针对性攻击的SDVN控制层鲁棒性方案[J].电子技术应用,2022,48(2):45-50,77.
英文引用格式: Mao Ming,Yi Peng,Zhang Zhen,et al. Robust control plane scheme in SDVN toward targeted attack[J]. Application of Electronic Technique,2022,48(2):45-50,77.
Robust control plane scheme in SDVN toward targeted attack
Mao Ming1,Yi Peng1,Zhang Zhen1,Ma Yun2
1.People′s Liberation Army Strategic Support Force Information Engineering University,Zhengzhou 450001,China; 2.68002 Troops,Lanzhou 730000,China
Abstract: Applying software-defined networking to the Internet of Vehicles can significantly improve its performance. However, this method also faces security issues that traditional SDN has to deal with. This paper proposes a robust controller placement method based on the targeted node attack problem that the control plane may face in the software-defined vehicular networking architecture. This method combines the traditional SDN control plane deployment problem. Firstly, the control plane robustness problem is modeled as the connectivity redundancy problem between the switch and the controller. Secondly, a robustness metric is designed to measure the robustness of the control plane. The simulation results demonstrate that the robustness of this method is better than the deployment scheme based on delay reliability.
Key words : software-defined vehicular networking(SDVN);controller placement;robustness;targeted attack

0 引言

    随着车联网的蓬勃发展,车载自组织网络(Vehicular Ad-hoc Network,VANET)受到工业界和学术界的极大关注。VANET中异构无线技术灵活性、可编程性、共存性的特点,以及5G架构中的资源管理等可利用SDN(Software-Defined Networking)的方式来实现[1]

软件定义车联网(Software-Defined Vehicular Networking,SDVN)结构组成与SDN相似。其中控制平面由管理和控制整个网络的SDN控制器组成,数据平面由各种交换设备组成,在节点间实现数据转发。数据平面又分为上层数据平面和下层数据平面。上层数据平面包括支持OpenFlow协议的交换机和路由器,以及无线接入设施,如路边单元、基站等;下层数据平面由车辆终端用户配备的车载单元组成。与SDN类似,尽管分布式控制平面[2]已成为SDVN架构的主流设计,将控制功能集中于控制层仍然存在遭受恶意攻击的风险。




毛  明1,伊  鹏1,张  震1,马  云2

(1.解放军战略支援部队信息工程大学,河南 郑州450001;2.68002部队,甘肃 兰州730000)

