Ȩ > Ç¥ÁØÈ °³¿ä > TTAÀÇ Ç¥ÁØÇöȲ
Ç¥ÁعøÈ£ | TTAK.KO-06.0537 | ±¸Ç¥ÁعøÈ£ | |
---|---|---|---|
Á¦°³Á¤ÀÏ | 2020-12-10 | ÃÑÆäÀÌÁö | 18 |
ÇѱÛÇ¥Áظí | ¼ÒÇÁÆ®¿þ¾î Á¤ÀÇ ³×Æ®¿öÅ·(SDN) Á¦¾î±â ±ÇÇÑ ¸ðµ¨ | ||
¿µ¹®Ç¥Áظí | Software-Defined Networking (SDN) Controller Permission Model | ||
Çѱ۳»¿ë¿ä¾à | º» Ç¥ÁØÀº SDN ³×Æ®¿öÅ© ȯ°æÀ» ±¸¼ºÇÏ´Â Á¦¾î Æò¸é(Control Plane), Á¦¾î ä³Î(Control Channel), µ¥ÀÌÅÍ Æò¸é(Data Plane) Áß Á¦¾î Æò¸é¿¡¼ ÀÛµ¿ÇÏ´Â SDN ÄÁÆ®·Ñ·¯ÀÇ ±ÇÇÑ ¸ðµ¨À» Á¤ÀÇÇÑ´Ù. ±âº»ÀûÀ¸·Î ÀÌ ¸ðµ¨¿¡¼ SDN ¾ÖÇø®ÄÉÀÌ¼Ç °³¹ßÀÚ´Â SDN ¾ÖÇø®ÄÉÀ̼ÇÀÌ »ç¿ëÇÏ´Â ±ÇÇѵéÀ» XML ÆÄÀÏ¿¡ ¸í½ÃÇÏ¿© ¹èÆ÷ÇØ¾ß ÇÑ´Ù. ÄÁÆ®·Ñ·¯´Â XML ±ÇÇÑ ÆÄÀÏ¿¡ ±â¹ÝÇÏ¿© ¿ªÇÒ ±â¹Ý ¿¢¼¼½º ÄÁÆ®·Ñ (Role-based Access Control, RBAC)°ú ±ÇÇÑ ±â¹Ý ¾×¼¼½º ÄÁÆ®·Ñ(Permission-based Access Control, PBAC)¸¦ ¼öÇàÇÑ´Ù. ±ÇÇÑ ¸ðµ¨Àº Å©°Ô 3°¡Áö·Î ±¸ºÐµÇ¾î (1) Service-level Role Based Access Control (2) Platform-level Permission Based Access Control (3) API-level Permission based Access Control À¸·Î ³ª´©¾î ¾ÖÇø®ÄÉÀ̼ÇÀÇ ±ÇÇÑÀ» °ËÁõÇÑ´Ù. º» ¹®¼¿¡¼´Â Java ±â¹Ý ¿ÀǼҽº SDN ÄÁÆ®·Ñ·¯ Áß ±¹³»¿Ü¿¡¼ È°¹ßÇÏ°Ô °³¹ß ¹× »ç¿ëµÇ°í ÀÖ´Â ONOS, OpenDaylight, Floodlight µîÀ» ´ë»óÀ¸·Î ¹ü¿ëÀûÀÎ ±ÇÇÑ ¸ðµ¨ ¼³°è¸¦ ¸ñÇ¥·Î ÇÑ´Ù. | ||
¿µ¹®³»¿ë¿ä¾à | This standard defines a permission model of SDN controller operating in control plane among Control Plane, Control Channel, and Data Plane that compose SDN-based network environment. Basically, in this model, the SDN application developer must deploy the permissions that the SDN application uses in an xml file. The SDN controller then verifies the permissions of the application by dividing the permission level into (1) Module-level Role-based Access Control (2) Service-level Role-based Access Control (3) API-level Permission-based Access Control. This permission model is designed on the basis of the popular Java-based SDN controllers such as ONOS, OpenDaylight, Floodlight, which are being actively developed among open source SDN controllers. | ||
±¹Á¦Ç¥ÁØ | |||
°ü·ÃÆÄÀÏ | TTAK.KO-06.0537.pdf |