Abderrahmane Boudi, I. Farris, Miloud Bagaa, T. Taleb
{"title":"基于轻量级虚拟化的网络边缘安全框架","authors":"Abderrahmane Boudi, I. Farris, Miloud Bagaa, T. Taleb","doi":"10.1109/CSCN.2018.8581721","DOIUrl":null,"url":null,"abstract":"The interest towards cybersecurity is fast growing over the last years. Accounting for the tremendous increase of security threats, the need for new defense strategies is acquiring an even growing importance. The widespread adoption of Internet of Things (IoT) devices, ranging from smart industrial appliances to simple domestic sensors, will increase the complexity of managing security requirements in a comprehensive way. The provisioning of on-demand security services according to the SECurity-as-a-Service model is gaining notable attention. Nevertheless, the hosting of security functions in remote data-centers will inevitably introduce long routing detours, thus high latency and traffic overhead. To cope with this, edge computing will prove to be useful to process data locally. But the reduced capabilities of edge nodes can negatively impact the overall performance of SECaaS solutions. This paper focuses on the provisioning of virtualized security functions via lightweight virtualization (i.e., container) technologies running in a resource-constrained environment. Our analysis focuses primarily on the feasibility and the performance evaluation of such scenario.","PeriodicalId":311896,"journal":{"name":"2018 IEEE Conference on Standards for Communications and Networking (CSCN)","volume":"33 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"Lightweight Virtualization Based Security Framework for Network Edge\",\"authors\":\"Abderrahmane Boudi, I. Farris, Miloud Bagaa, T. Taleb\",\"doi\":\"10.1109/CSCN.2018.8581721\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The interest towards cybersecurity is fast growing over the last years. Accounting for the tremendous increase of security threats, the need for new defense strategies is acquiring an even growing importance. The widespread adoption of Internet of Things (IoT) devices, ranging from smart industrial appliances to simple domestic sensors, will increase the complexity of managing security requirements in a comprehensive way. The provisioning of on-demand security services according to the SECurity-as-a-Service model is gaining notable attention. Nevertheless, the hosting of security functions in remote data-centers will inevitably introduce long routing detours, thus high latency and traffic overhead. To cope with this, edge computing will prove to be useful to process data locally. But the reduced capabilities of edge nodes can negatively impact the overall performance of SECaaS solutions. This paper focuses on the provisioning of virtualized security functions via lightweight virtualization (i.e., container) technologies running in a resource-constrained environment. Our analysis focuses primarily on the feasibility and the performance evaluation of such scenario.\",\"PeriodicalId\":311896,\"journal\":{\"name\":\"2018 IEEE Conference on Standards for Communications and Networking (CSCN)\",\"volume\":\"33 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-10-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2018 IEEE Conference on Standards for Communications and Networking (CSCN)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CSCN.2018.8581721\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 IEEE Conference on Standards for Communications and Networking (CSCN)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSCN.2018.8581721","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Lightweight Virtualization Based Security Framework for Network Edge
The interest towards cybersecurity is fast growing over the last years. Accounting for the tremendous increase of security threats, the need for new defense strategies is acquiring an even growing importance. The widespread adoption of Internet of Things (IoT) devices, ranging from smart industrial appliances to simple domestic sensors, will increase the complexity of managing security requirements in a comprehensive way. The provisioning of on-demand security services according to the SECurity-as-a-Service model is gaining notable attention. Nevertheless, the hosting of security functions in remote data-centers will inevitably introduce long routing detours, thus high latency and traffic overhead. To cope with this, edge computing will prove to be useful to process data locally. But the reduced capabilities of edge nodes can negatively impact the overall performance of SECaaS solutions. This paper focuses on the provisioning of virtualized security functions via lightweight virtualization (i.e., container) technologies running in a resource-constrained environment. Our analysis focuses primarily on the feasibility and the performance evaluation of such scenario.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
