本文選題：網(wǎng)絡(luò)功能虛擬化　切入點(diǎn)：安全功能　出處：《電子科技大學(xué)》2017年碩士論文　論文類型：學(xué)位論文

【摘要】：信息產(chǎn)業(yè)近年來取得了飛速的進(jìn)步,數(shù)據(jù)中心、云計(jì)算等業(yè)務(wù)也伴隨著虛擬化技術(shù)的不斷成熟迅速發(fā)展。一方面,傳統(tǒng)電信網(wǎng)絡(luò)發(fā)展勢頭變緩、更新速度非常慢、靈活性較差,只能通過不斷地投入固化的硬件設(shè)備來擴(kuò)充網(wǎng)絡(luò)帶來的服務(wù)性能,安全服務(wù)也只能通過硬件設(shè)備的配置固化于網(wǎng)絡(luò)中。另一方面,網(wǎng)絡(luò)設(shè)備中安全檢測的硬件使用率往往很低,給整個(gè)系統(tǒng)都帶來了極大資源浪費(fèi)。結(jié)合以上特點(diǎn)與問題,本論文提出虛擬化網(wǎng)絡(luò)功能運(yùn)用于傳統(tǒng)的電信網(wǎng)中安全服務(wù),進(jìn)行傳統(tǒng)網(wǎng)絡(luò)安全設(shè)備的網(wǎng)元與硬件解耦,使網(wǎng)絡(luò)更具有靈活性。目前AWS、Azure等平臺已經(jīng)有相關(guān)的服務(wù)提供,商業(yè)界的快速發(fā)展也給學(xué)術(shù)界提供了更寶貴的研究價(jià)值。本文也就能耗問題及資源消耗問題提出了研究的價(jià)值和看法,給虛擬化網(wǎng)絡(luò)中的資源消耗問題帶來新的思路。本文研究的主要要點(diǎn):(1)結(jié)合網(wǎng)絡(luò)功能虛擬化的優(yōu)點(diǎn),利用了虛擬化的思想,給出了一種安全內(nèi)嵌網(wǎng)絡(luò)架構(gòu)的優(yōu)化的控制技術(shù),并充分考慮減少資源消耗的尋路策略,讓傳統(tǒng)復(fù)雜困難的電信網(wǎng)絡(luò)抽象為靈活與規(guī)則的網(wǎng)絡(luò)架構(gòu),更新和優(yōu)化了整個(gè)網(wǎng)絡(luò)的架構(gòu)設(shè)計(jì)。(2)基于兩種不同的算法思路,運(yùn)用了兩種不同的安全功能定位和用戶尋路的算法——貪心算法和維特比算法,以解決網(wǎng)絡(luò)中安全功能服務(wù)配置不均、網(wǎng)絡(luò)資源消耗嚴(yán)重等所造成的系統(tǒng)開銷大的問題。貪心算法主要考慮的是局部最優(yōu),每一次尋路都占據(jù)當(dāng)前足夠的優(yōu)勢,而不會去更多地考慮全局問題,貪心算法是從最終的結(jié)果來分析過程最優(yōu)。(3)通過構(gòu)建不同節(jié)點(diǎn)規(guī)模的網(wǎng)絡(luò),將安全功能合理部署于網(wǎng)絡(luò)中,將兩種不同的方法用于環(huán)境中進(jìn)行仿真,通過對于仿真結(jié)果的對比,分析特點(diǎn)與優(yōu)勢。
[Abstract]:The information industry has made rapid progress in recent years, data center, cloud computing and other services are also accompanied by the rapid development of virtualization technology. On the one hand, the development of traditional telecommunications network is slow, the update speed is very slow, and the flexibility is poor. The service performance of the network can only be expanded by the constant input of the solidified hardware equipment, and the security service can only be solidified in the network by the configuration of the hardware equipment. On the other hand, the hardware usage rate of the security detection in the network equipment is often very low. It brings great waste of resources to the whole system. Combined with the above characteristics and problems, this paper proposes that the virtualization network function can be applied to the security service in the traditional telecommunication network, and the network elements and hardware of the traditional network security equipment can be decoupled. To make the network more flexible. Currently, AWS Azure and other platforms already have related services provided, The rapid development of business also provides more valuable research value for academic circles. This paper also puts forward the research value and view on energy consumption and resource consumption. The main point of this paper is to combine the advantages of network function virtualization and make use of the idea of virtualization, and give an optimized control technology of secure embedded network architecture. The routing strategy of reducing resource consumption is fully considered, so that the traditional complex and difficult telecommunication network is abstracted into a flexible and regular network architecture, and the architecture design of the whole network is updated and optimized based on two different algorithms. Two different security function location and user routing algorithms, greedy algorithm and Viterbi algorithm, are used to solve the problem of uneven configuration of security function services in the network. The greedy algorithm mainly considers the local optimum, each time the route finding occupies the current sufficient advantage, and will not consider the global problem more. Greedy algorithm is to analyze the optimal process from the final result. By constructing the network with different node size, the security function is reasonably deployed in the network, and two different methods are applied to the simulation in the environment, and the simulation results are compared. Analysis of characteristics and advantages.
【學(xué)位授予單位】：電子科技大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2017
【分類號】：TP393.0

【參考文獻(xiàn)】

相關(guān)期刊論文 前4條

1 李娟;張婷;李元香;;基于改進(jìn)演化算法的最短路徑問題研究[J];計(jì)算機(jī)應(yīng)用與軟件;2015年09期

2 解沖鋒;胡曉娟;李晨;谷欣;;NFV對于運(yùn)營級IP網(wǎng)絡(luò)的影響及挑戰(zhàn)[J];電信技術(shù);2015年07期

3 廖方圓;;云計(jì)算組件式虛擬化安全技術(shù)[J];信息安全與通信保密;2014年05期

4 任凱;浦金云;;有向賦權(quán)網(wǎng)絡(luò)中任意節(jié)點(diǎn)對的最短路徑集求解方法[J];計(jì)算機(jī)應(yīng)用;2010年S1期

相關(guān)博士學(xué)位論文 前1條

1 楊洪波;高性能網(wǎng)絡(luò)虛擬化技術(shù)研究[D];上海交通大學(xué);2012年

，

本文編號：1641778