论文信息 - An E-ABAC-Based SDN Access Control Method

An E-ABAC-Based SDN Access Control Method

In order to solve the problem of resource security access control in SDN (Software Define Network), the idea of mandatory access control is introduced, and E-ABAC (Extended Attributes Based Access Control) model based on security level is designed to realize confidentiality and integrity in the access process. SDN switch security level is regarded as the attribute of access control environment, and a secure path planning method based on PSO (Particle Swarm Optimization) algorithm is designed to ensure the security of access data flow. The experimental results show that the proposed method can implement fine-grained mandatory access control in SDN, and has little effect on the response time of concurrent requests.

Wanzhong Sun | Yingjie Yang | Dexian Chang | Tingting Wang

[1] Riccardo Poli,et al. Particle swarm optimization , 1995, Swarm Intelligence.

[2] David F. Ferraiolo,et al. Guide to Attribute Based Access Control (ABAC) Definition and Considerations , 2014 .

[3] Zhu Yan,et al. EAR-ABAC: An Extended AR-ABAC Access Control Model for SDN-Integrated Cloud Computing , 2015 .

[4] Gail-Joon Ahn,et al. AR-ABAC: A New Attribute Based Access Control Model Supporting Attribute-Rules for Cloud Computing , 2015, 2015 IEEE Conference on Collaboration and Internet Computing (CIC).

[5] Zbigniew Kotulski,et al. New SDN-Oriented Authentication and Access Control Mechanism , 2018, CN.

[6] G. Cain,et al. MININET: A local area network for real-time instrumentation applications , 1984 .

[7] R. K. Shyamasundar,et al. A Complete Generative Label Model for Lattice-Based Access Control Models , 2017, SEFM.