| 发明名称 |
Authentication within openflow network |
| 摘要 |
An OpenFlow network controller controls an OpenFlow network. A networking connection is established between the OpenFlow network controller and an OpenFlow network device attempting to become part of the OpenFlow network. After establishing the networking connection with the OpenFlow network device, the OpenFlow network controller attempts to authenticate the OpenFlow network device. Where authentication of the OpenFlow network device is successful, the OpenFlow network controller sends a message to the OpenFlow network device to indicate that the authentication was successful and permits the OpenFlow network device to join and perform OpenFlow messaging. |
| 申请公布号 |
US9246905(B2) |
申请公布日期 |
2016.01.26 |
| 申请号 |
US201514589381 |
申请日期 |
2015.01.05 |
| 申请人 |
International Business Machines Corporation |
发明人 |
Kapur Ashish;Shukla Vishal;Tran Thu Quoc |
| 分类号 |
H04L29/06;H04L9/32;H04L12/771 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
Vallone Mark |
| 主权项 |
1. A method comprising:
establishing a network connection between an OpenFlow network controller and an OpenFlow network device attempting to become part of an OpenFlow network that the OpenFlow network controller controls; and after establishing the networking connection between the OpenFlow network controller and the OpenFlow network device: the OpenFlow network controller attempting to authenticate the OpenFlow network device, by:
sending a first authentication message from the OpenFlow network controller to the OpenFlow network device, the first authentication message specifying a first algorithm; andafter sending the first authentication message from the OpenFlow network controller to the OpenFlow network device:
the OpenFlow network controller receiving a first authentication response from the OpenFlow network device sent by the OpenFlow network device in reply to the first authentication message, the first authentication response specifying a second algorithm identical to the first algorithm;sending a second authentication message from the OpenFlow network controller to the OpenFlow network device, the second authentication message specifying a challenge value;the OpenFlow network controller receiving a second authentication response from the OpenFlow network device sent by the OpenFlow network device in reply to the second authentication message, the second authentication response specifying a correct challenge response; andthe OpenFlow network controller determining that the authentication of the OpenFlow network device is successful; the OpenFlow network controller ignoring OpenFlow messages received from the OpenFlow network device until the OpenFlow network controller has finished attempting to authenticate the OpenFlow network device, and such that the OpenFlow network device is not permitted to become part of the OpenFlow network unless authentication has been successfully completed, where the authentication of the OpenFlow network device is successful, the OpenFlow network controller sending a message to the OpenFlow network device to indicate that the authentication was successful and permitting the OpenFlow network device to perform OpenFlow messaging. |
| 地址 |
Armonk NY US |
