数据与计算发展前沿 ›› 2021, Vol. 3 ›› Issue (1): 15-33.

doi: 10.11871/jfdc.issn.2096-742X.2021.01.002

• 区块链技术与应用专刊 • 上一篇    下一篇

SDN多控制器共识机制研究综述

关建峰1,*(),牛晓彤1(),高先明2,*(),延志伟3()   

  1. 1.北京邮电大学计算机学院(国家示范性软件学院),北京 100876
    2.军事科学院系统工程研究院,北京 100142
    3.中国互联网络信息中心,北京 100190
  • 收稿日期:2020-09-11 出版日期:2021-02-20 发布日期:2021-02-07
  • 通讯作者: 关建峰,高先明
  • 作者简介:关建峰,北京邮电大学,副教授,IEEE会员,目前的研究方向包括网络架构、区块链与网络安全、移动互联网、大数据与人工智能等。在本文中承担论文整体架构设计指导与SDN可信基础设施。
    GUAN Jianfeng is an associate professor at Beijing University of Posts and Telecommunications. His current research interests include network architecture, blockchain and network security, mobile Internet, big data and AI.In this paper, he is responsible for the overall framework design and guidance of credible SDN infrastructures.E-mail: jfguan@bupt.edu.cn|牛晓彤,北京邮电大学,硕士研究生,研究兴趣包括软件定义网络、共识机制与区块链。在本文中承担共识算法研究现状与SDN多控制器CFT类共识机制研究现状。
    NIU Xiaotong is a graduate student at Beijing University of Posts and Telecommunications (BUPT), Beijing, China. Her research interests include software definition network, consensus mechanism and blockchain.In this paper, she is responsible for the research status of consensus algorithm and the research status of CFT consensus in the multi-controller layer of SDN.E-mail:niuxiaotong111@163.com|高先明,军事科学院系统工程研究院,工程师,研究兴趣包括智能网络、韧性网络。在本文中承担可信SDN安全服务及可信区块链基础设施部署方案。
    GAO Xianming is an engineer at Institute of System Engineering, Academy of Military Science. His current research interests include intelligence network and resilience network.In this paper, he is responsible for the trusted SDN security services and blockchain deployment scheme.E-mail: nudt_gxm@163.com|延志伟,中国互联网络信息中心,博士,研究员,主要研究方向为IPv6 移动性管理、BGP安全机制、信息中心网络架构。本文主要负责区块链共识算法。
    YAN Zhiwei, Ph.D., is a researcher of China Internet Network Information Center. His main research directions are IPv6 mobility management, BGP security mechanism, and information center network architecture.In this paper, he is mainly responsible for the overall framework design and guidance.E-mail: yanzhiwei@cnnic.cn
  • 基金资助:
    基础计划加强重点基础研究项目(2019-JCJQ-ZD-182-00-02);北京市科技新星计划项目(Z191100001119113)

A Survey on Multi-controller Consensus Mechanisms

GUAN Jianfeng1,*(),NIU Xiaotong1(),GAO Xianming2,*(),YAN Zhiwei3()   

  1. 1. School of Computer Science (National Pilot Software Engineering School), Beijing University of Posts and Telecommunications, Beijing 100876, China
    2. Academy of Military Sciences, Beijing 100141, China
    3. China Internet Network Information Center, Beijing 100190, China
  • Received:2020-09-11 Online:2021-02-20 Published:2021-02-07
  • Contact: GUAN Jianfeng,GAO Xianming

摘要:

[背景]伴随着区块链逐渐应用于新一代互联网络的域名、路由、公钥等基础设施,其重要性日益彰显。作为区块链以及整个分布式系统领域的核心技术,共识机制直接影响着区块链的处理能力、可扩展性及安全性,也影响着其在互联网基础设施中的根基。[目的]对软件定义网络SDN (Software Defined Network) 中用于实现多控制器之间数据共享的共识机制设计进行综述,分析当前设计中存在的问题并提出解决方案,为相关研究工作提供参考。[方法]本文首先对共识机制的研究现状进行了概述,然后重点对SDN多控制器共识机制设计的研究现状进行了综述,对其中存在的问题进行了分析,并基于区块链技术提出了解决方案,介绍了当前将区块链技术应用于SDN网络的研究现状。[结果]当前SDN多控制器共识机制在实际部署中多采用以Raft为代表的宕机容错类共识机制,无法应对控制器或交换机等恶意行为,现有研究尝试引入拜占庭容错类共识解决该问题,并针对共识机制在SDN网络中的应用进行自适应设计以提高系统运行性能,但当前的SDN控制层中的用于实现控制器间数据共享的共识机制设计仍存在着共识网络部署不灵活、控制器运行共识机制带来巨大开销方面的问题。[结论]本文提出的基于区块链的控制器层数据共享第三方服务具有安全、可信、部署灵活等方面的优势,可为上述问题提供解决方案。本文提出的基于区块链的SDN网络可信基础设施作为数据共享服务的扩展架构,可为SDN提供多种安全可信服务。

关键词: 区块链, 多控制器, 共识算法, 软件定义网络, 拜占庭容错

Abstract:

[Background] With the increasing application of blockchain in infrastructures of the new generation of Internet in terms of the domain name, routing and public key system, the importance of blockchain is becoming increasingly prominent. As the core technology of blockchain or even the whole field of distributed system, consensus algorithms directly affect the transaction processing capacity, scalability and security of blockchain, as well as their role as a foundation in Internet infrastructure. [Objective] In this paper, we introduce the consensus mechanism for sharing data among multiple controllers in Software Defined Network (SDN), analyze the problems existing in the current design and propose solutions, and provide a reference for relevant research work. [Methods] Based on the classic distributed consensus algorithms, this paper summarizes the research status of consensus mechanism with a focus on the consensus in the multi-controller layer of SDN and the existing problems, proposes solutions based on the blockchain technology, and introduces the current research status of applying blockchain technology to SDN. [Results] The consensus mechanisms in the multi-controller cluster of SDN are mainly represented by Raft-like fault-tolerant consensus mechanisms in actual deployment, which cannot deal with the malicious behaviors to controllers or switches. Some existing researches have tried to introduce Byzantine fault-tolerant consensus mechanism, and improve the system performance adaptively. However, in the current SDN control layer, the consensus mechanism used to realize data sharing among controllers still has some problems, such as inflexible deployment of consensus network and huge cost caused by the controller consensus mechanism. [Conclusions] The third-party data-sharing service on controller layer based on blockchain proposed in this paper has advantages in security, credibility and flexible deployment, etc., which can provide solutions to solve the above mentioned problems. As an extended architecture of data sharing service, the credible blockchain-based SDN infrastructure proposed in this paper can provide a variety of secure and trusted services for SDN.

Key words: blockchain, multi-controller, consensus, SDN, Byzantine fault tolerance