| Summary: | 碩士 === 國立中山大學 === 資訊工程學系研究所 === 106 === Software-Defined Network (SDN) is a new concept of network architecture. Due to the properties
of SDN, managing and monitoring an entire network is easier than the traditional networking.
However, the new architecture leads to additional security issues. One of the security
issues is secure communication between SDN controller and network nodes. The security issue
affects exchange of the credible control messages between SDN controller and network nodes.
Therefore, this paper proposes a leakage-resistant key distribution mechanism based on Elliptic
Curve Cryptography (ECC).
The mechanism provides two phase, the first phase that the SDN controller distributes a longterm
key to the new network nodes, and the second phase that the SDN controller distributes
short-term symmetric keys to the network nodes for secure packet transmission. The proposed
key distribution mechanism can support the fast and secure joining of new network nodes in
SDN. Also, except for the nodes in the same path, other nodes have not the capability of decrypting
the transmitted packets for secure communications in SDN.
|
|---|
