Open Access
A System for Source Address Authentication and Anonymous Communication Based on SDN
Author(s) -
Ming Li,
Ran-ran Shan,
Yong Tang
Publication year - 2020
Publication title -
journal of physics. conference series
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.21
H-Index - 85
eISSN - 1742-6596
pISSN - 1742-6588
DOI - 10.1088/1742-6596/1631/1/012148
Subject(s) - computer science , computer network , anonymity , network packet , routing (electronic design automation) , authentication (law) , software defined networking , distributed computing , computer security
Based on the idea of SDN (Software Defined Network) management and control separation and the development convenience provided by the programmable interface, we conduct the research on the security during the communication security, and protection for anonymity: (1) For the problem of communication security, we design two source address authentication schemes to detect whether the source host is legal. (2) For the problem of anonymity protection, A series of changes of the IP address in data packets by intermediate SDN switches make it difficult for the attacker to obtain information from both parties in communication. And to ensure that the address generated after the execution of those changes can uniquely identify the current data stream, we proposed the Improved-MAGA algorithm based on MAGA (M-Address Generation Algorithm). (3) For the shortest path routing algorithm, which maybe result in hot-links problems, the measurement link bandwidth utilization is added as a weight vector in the routing process to solve the problem of excessive link load caused by the default routing algorithm.