Research On Software Defined Networkencryption Technology

With the coming of 5G era and the vigorous development of cloud computing,artificial intelligence,big data and other IT technologies,the amount of network information is about to see a leap growth.This will bring both opportunities and challenges for all walks of life,because the huge growth of information means more risks of sensitive data leakage and the need for a more flexible and powerful network environment for data transmission.In view of these problems,this paper takes the SDN technology that has emerged in recent years as the entry point and combines SDN with data encryption to carry out research.The main work of this paper includes the following contents:(1)The application scenario of combining SDN and encryption technology is studied,two application scenarios combining SDN technology and encryption technology are presented.In the first scenario,a dynamic network encryption service model based on sd-wan architecture is designed by using sd-wan to control network fine granularity,This model can realize the linkage control of traffic scheduiling and password service in the wan,and it could efficiently use network password resources.Besides,through the flexible control of data flow in SDN network,the function projection of network cryptographic equipment is realized.According to this principle,the dynamic deployment scheme of cryptographic service in SDN network is designed.The scheme can provide dynamic and elastic ancryption services for more subnets with as few network ciphers as possible.(2)Based on the current lack of SDN encryption switch in the industry,a SDN encryption exchange system supporting SDN data exchange function and IPSec encryption and decryption function is designed,and the main functional modules of the system are designed and developed.The system provides an implementation method for the development of SDN encryption switch.(3)SDN encryption switching system is realized on a general switch,and a hardware prototype of SDN encryption switch is developed.The performance of SDN encryption switch was tested through experiments.The experimental results showed that SDN encryption switch supports Openflow protocol and can encrypt and decrypt data.Develop software module on SDN encryption switch,VxLAN function is realized through design and development.