A TOSCA-Oriented Software-Defined Security Approach for Unikernel-Based Protected Clouds

Item request has been placed!

Item request cannot be made.

Processing Request

اقرأ أكثر حفظ في قائمتي

المؤلفون: Compastié, Maxime; Badonnel, Rémi; Festor, Olivier; He, Ruan
المصدر:
Proceedings of the IEEE International Conference on Network Softwarization (IEEE NetSoft) ; NetSoft 2019 - IEEE Conference on Network Softwarization ; https://hal.science/hal-02271520 ; NetSoft 2019 - IEEE Conference on Network Softwarization, Jun 2019, Paris, France. pp.151-159, ⟨10.1109/NETSOFT.2019.8806623⟩
الموضوع:
Cloud Environments; Software-Defined Security; Policy-Based Management; Security Orchestration; Unikernels; Index Terms-Cloud Environments; [INFO.INFO-NI]Computer Science [cs]/Networking and Internet Architecture [cs.NI]; [INFO.INFO-ET]Computer Science [cs]/Emerging Technologies [cs.ET]
نوع التسجيلة:
conference object
اللغة:
English

معلومة اضافية
- Contributors:
  Orange Labs Chatillon; Orange Labs; Resilience and Elasticity for Security and ScalabiliTy of dynamic networked systems (RESIST); Inria Nancy - Grand Est; Institut National de Recherche en Informatique et en Automatique (Inria)-Institut National de Recherche en Informatique et en Automatique (Inria)-Department of Networks, Systems and Services (LORIA - NSS); Laboratoire Lorrain de Recherche en Informatique et ses Applications (LORIA); Institut National de Recherche en Informatique et en Automatique (Inria)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS)-Institut National de Recherche en Informatique et en Automatique (Inria)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS)-Laboratoire Lorrain de Recherche en Informatique et ses Applications (LORIA); Institut National de Recherche en Informatique et en Automatique (Inria)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS)
- بيانات النشر:
  HAL CCSD
  IEEE
- الموضوع:
  2019
- Collection:
  Université de Rennes 1: Publications scientifiques (HAL)
- الموضوع:
  Paris; France
- نبذة مختصرة :
  International audience ; Cloud infrastructures provide new facilities to build elaborated added-value services by composing and configuring a large variety of computing resources, from virtualized hardware devices to software products. In the meantime, they are further exposed to security attacks than traditional environments. The complexity of security management tasks has been increased by the multi-tenancy, heterogeneity and geographical distribution of these resources. They introduce critical issues for cloud service providers and their customers, with respect to security programmability and scenarios of adaptation to contextual changes. In this paper, we propose a software-defined security approach based on the TOSCA language, to enable unikernel-based protected clouds. We first introduce extensions of this language to describe unikernels and specify security constraints for their orchestrations. We then describe an architecture exploiting this extended version of TOSCA for automatically generating, deploying and adjusting cloud resources in the form of protected unikernels with a low attack surface. We finally detail a proof-of-concept prototype, and evaluate the proposed solution through extensive series of experiments.
- Relation:
  hal-02271520; https://hal.science/hal-02271520; https://hal.science/hal-02271520/document; https://hal.science/hal-02271520/file/HAL-draft-tosca-sdsec.pdf
- الرقم المعرف:
  10.1109/NETSOFT.2019.8806623
- الدخول الالكتروني :
  https://hal.science/hal-02271520
  https://hal.science/hal-02271520/document
  https://hal.science/hal-02271520/file/HAL-draft-tosca-sdsec.pdf
  https://doi.org/10.1109/NETSOFT.2019.8806623
- Rights:
  info:eu-repo/semantics/OpenAccess
- الرقم المعرف:
  edsbas.47693238

تعليقات

No Comments.

A TOSCA-Oriented Software-Defined Security Approach for Unikernel-Based Protected Clouds

اتصل بنا

اتبع