| 发明名称 |
Control apparatus in software defined network and method for operating the same |
| 摘要 |
A control apparatus which manages a software defined network including a plurality of switches includes a security management module that authenticates at least one application program, and an application program management module that executes the authenticated application program among the at least one application program in a first process, and executes the application program whose authentication fails in a second process. The application program management module may be executed in the first process, and the first process may be different from the second process. |
| 申请公布号 |
US9521134(B2) |
申请公布日期 |
2016.12.13 |
| 申请号 |
US201514711544 |
申请日期 |
2015.05.13 |
| 申请人 |
ATTO RESEARCH CO., LTD. |
发明人 |
Chung Jae Woong;Shin Seung Won;Song Yong Joo |
| 分类号 |
H04L29/06;H04L12/931;H04L12/26 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method for operating a control apparatus which manages a software defined network including a plurality of switches, the method comprising:
authenticating at least one application program; executing, by an application program management module, the authenticated application program among the at least one application program in a first process; executing, by the application program management module, the application program whose authentication fails in a second process; monitoring whether the authenticated application program executed in the first process is operated according to a set event authority or a set resource authority; and determining that authentication on the monitored application program fails when the authenticated application program is operated beyond the set event authority or the set resource authority as a result of the monitoring, and, if the authentication on the monitored application program fails, performing an operation corresponding to the set event authority or the set resource authority with respect to the monitored application program, wherein the first process is different from the second process, and wherein the method further comprises: queuing a plurality of events; determining an event to be processed among the plurality of events based on a priority assigned to a type of the determined event; and distributing the determined event to an application program to process the determined event. |
| 地址 |
Seongnam KR |
