Xianwei Zhu scite author profile

Xianwei Zhu

4Publications

0Citation Statements Received

41Citation Statements Given

How they've been cited

How they cite others

Affiliations

PLA Information Engineering University

Publications

Order By: Most citations

Attribute-Guard: Attribute-Based Flow Access Control Framework in Software-Defined Networking

Zhu

Chang

Qin

et al. 2020

Security and Communication Networks

View full text Add to dashboard Cite

Software-defined networking (SDN) decouples the control plane from the data plane, offering flexible network configuration and management. Because of this architecture, some security features are missing. On the one hand, because the data plane only has the packet forwarding function, it is impossible to effectively authenticate the data validity. On the other hand, OpenFlow can only match based on network characteristics, and it is impossible to achieve fine-grained access control. In this paper, we aim to develop solutions to guarantee the validity of flow in SDN and present Attribute-Guard, a fine-grained access control and authentication scheme for flow in SDN. We design an attribute-based flow authentication protocol to verify the legitimacy of the validity flow. The attribute identifier is used as a matching field to define a forwarding control. The flow matching based on the attribute identifier and the flow authentication protocol jointly implement fine-grained access control. We conduct theoretical analysis and simulation-based evaluation of Attribute-Guard. The results show that Attribute-Guard can efficiently identify and reject fake flow.

show abstract

Packet Access Control Mechanism Based on Cipher Identification in Software-defined Network

Zhu

Chang

2019

View full text Add to dashboard Cite

Design and Formal Verification of a VANET Lightweight Authentication Protocol

Guo-lei

Wang

et al. 2018

View full text Add to dashboard Cite

A lightweight authentication and key distribution protocol for VANET (Vehicle ad-hoc Network) was proposed by reducing the overload of network communication and vehicle gateway calculation. Both parties of communication could accomplish authentication without trusted third party by presetting each other's certificates. Session key was generated and distributed by cloud server to reduce times of data switch and calculation complexity of vehicle gateway. Lastly, BAN logic was used to decrease redundancy and to assure validity of the protocol. Applicability analysis and simulation show that proposed protocol has the advantage in the aspect of calculation and access time, and it fits VANET well.

show abstract

A novel software-defined network packet security tunnel forwarding mechanism

Zuo¹,

He²,

Zhu³

et al. 2019

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Xianwei Zhu

Attribute-Guard: Attribute-Based Flow Access Control Framework in Software-Defined Networking

Packet Access Control Mechanism Based on Cipher Identification in Software-defined Network

Design and Formal Verification of a VANET Lightweight Authentication Protocol

A novel software-defined network packet security tunnel forwarding mechanism

Contact Info

Product

Resources

About