零信任使用网络微分段

IEEE INFOCOM 2021 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS) Pub Date : 2021-05-10 DOI:10.1109/INFOCOMWKSHPS51825.2021.9484645

Nabeela I. Sheikh, M. Pawar, Victor Lawrence

{"title":"零信任使用网络微分段","authors":"Nabeela I. Sheikh, M. Pawar, Victor Lawrence","doi":"10.1109/INFOCOMWKSHPS51825.2021.9484645","DOIUrl":null,"url":null,"abstract":"Current enterprise infrastructures are undergoing significant security transformations as traditional infrastructures and data centers are being replaced by cloud computing environments hosting dynamic workloads. Current network security best practices are not well suited for traditional data centers where network micro segmentation is required. In this paper, we present a novel network security architecture that supports zero trust approach, based on a concept that inspects network traffic for port and protocol information to allow authorized communication. This approach is demonstrated in a cloud computing data center environment.","PeriodicalId":109588,"journal":{"name":"IEEE INFOCOM 2021 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)","volume":"28 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-05-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":"{\"title\":\"Zero trust using Network Micro Segmentation\",\"authors\":\"Nabeela I. Sheikh, M. Pawar, Victor Lawrence\",\"doi\":\"10.1109/INFOCOMWKSHPS51825.2021.9484645\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Current enterprise infrastructures are undergoing significant security transformations as traditional infrastructures and data centers are being replaced by cloud computing environments hosting dynamic workloads. Current network security best practices are not well suited for traditional data centers where network micro segmentation is required. In this paper, we present a novel network security architecture that supports zero trust approach, based on a concept that inspects network traffic for port and protocol information to allow authorized communication. This approach is demonstrated in a cloud computing data center environment.\",\"PeriodicalId\":109588,\"journal\":{\"name\":\"IEEE INFOCOM 2021 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)\",\"volume\":\"28 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-05-10\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE INFOCOM 2021 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/INFOCOMWKSHPS51825.2021.9484645\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE INFOCOM 2021 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/INFOCOMWKSHPS51825.2021.9484645","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

摘要

随着承载动态工作负载的云计算环境取代传统基础设施和数据中心，当前的企业基础设施正在经历重大的安全转型。当前的网络安全最佳实践并不适合需要网络微分段的传统数据中心。在本文中，我们提出了一种支持零信任方法的新型网络安全架构，该架构基于检查网络流量的端口和协议信息以允许授权通信的概念。该方法在云计算数据中心环境中进行了演示。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Zero trust using Network Micro Segmentation

Current enterprise infrastructures are undergoing significant security transformations as traditional infrastructures and data centers are being replaced by cloud computing environments hosting dynamic workloads. Current network security best practices are not well suited for traditional data centers where network micro segmentation is required. In this paper, we present a novel network security architecture that supports zero trust approach, based on a concept that inspects network traffic for port and protocol information to allow authorized communication. This approach is demonstrated in a cloud computing data center environment.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

IEEE INFOCOM 2021 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)

自引率

0.00%

发文量