SDN-based Dynamic Policy Specification and Enforcement for Provisioning SECaaS in Cloud

被引:1
|
作者
Tupakula, Uday [1 ]
Varadharajan, Vijay [1 ]
Karmakar, Kallol [1 ]
机构
[1] Univ Newcastle, Adv Cyber Secur Res Ctr, Callaghan, NSW, Australia
来源
WEB INFORMATION SYSTEMS ENGINEERING, WISE 2017, PT II | 2017年 / 10570卷
关键词
SECaaS; Cloud security management; SDN; Policy control;
D O I
10.1007/978-3-319-68786-5_44
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
In this paper we make use of SDN for provisioning of Security as a Service (SECaaS) to the tenant and simplify the security management in cloud. We have developed a Security Application (SA) for the SDN Controller which is used for capturing the tenant security requirements and enforcing the related security policies for securing their virtual machines (VMs). We have developed a security policy specification language for enforcing TPM, Access Control and Intrusion Detection related security policies with the SA. Finally we present the prototype implementation of our approach and some performance results.
引用
收藏
页码:550 / 561
页数:12
相关论文
共 50 条
  • [1] A lightweight policy enforcement system for resource protection and management in the SDN-based cloud
    Leng, Xue
    Hou, Kaiyu
    Chen, Yan
    Bu, Kai
    Song, Libin
    Li, You
    [J]. COMPUTER NETWORKS, 2019, 161 : 68 - 81
  • [2] Multistage OCDO: Scalable Security Provisioning Optimization in SDN-based Cloud
    Jarraya, Yosr
    Shameli-Sendi, Alireza
    Pourzandi, Makan
    Cheriet, Mohamed
    [J]. 2015 IEEE 8TH INTERNATIONAL CONFERENCE ON CLOUD COMPUTING, 2015, : 572 - 579
  • [3] CyberShip-IoT: A dynamic and adaptive SDN-based security policy enforcement framework for ships
    Sahay, Rishikesh
    Meng, Weizhi
    Estay, D. A. Sepulveda
    Jensen, Christian D.
    Barfod, Michael Bruhn
    [J]. FUTURE GENERATION COMPUTER SYSTEMS-THE INTERNATIONAL JOURNAL OF ESCIENCE, 2019, 100 : 736 - 750
  • [4] Usage Control Policy Enforcement in SDN-based Clouds: A Dynamic Availability Service Use Case
    Toumi, Khalifa
    Idrees, Muhammad Sabir
    Charmet, Fabien
    Yaich, Reda
    Blanc, Gregory
    [J]. PROCEEDINGS OF 2016 IEEE 18TH INTERNATIONAL CONFERENCE ON HIGH PERFORMANCE COMPUTING AND COMMUNICATIONS; IEEE 14TH INTERNATIONAL CONFERENCE ON SMART CITY; IEEE 2ND INTERNATIONAL CONFERENCE ON DATA SCIENCE AND SYSTEMS (HPCC/SMARTCITY/DSS), 2016, : 578 - 585
  • [5] SDN-based Stateful Firewall for Cloud
    Li, Jian
    Jiang, Hao
    Jiang, Wei
    Wu, Jing
    Du, Wen
    [J]. 2020 IEEE 6TH INT CONFERENCE ON BIG DATA SECURITY ON CLOUD (BIGDATASECURITY) / 6TH IEEE INT CONFERENCE ON HIGH PERFORMANCE AND SMART COMPUTING, (HPSC) / 5TH IEEE INT CONFERENCE ON INTELLIGENT DATA AND SECURITY (IDS), 2020, : 157 - 161
  • [6] SDN-Based Cloud Computing Networking
    Azodolmolky, Siamak
    Wieder, Philipp
    Yahyapour, Ramin
    [J]. 2013 15TH INTERNATIONAL CONFERENCE ON TRANSPARENT OPTICAL NETWORKS (ICTON 2013), 2013,
  • [7] Resource Management in SDN-Based Cloud and SDN-Based Fog Computing: Taxonomy Study
    Alomari, Amirah
    Subramaniam, Shamala K.
    Samian, Normalia
    Latip, Rohaya
    Zukarnain, Zuriati
    [J]. SYMMETRY-BASEL, 2021, 13 (05):
  • [8] SDN-Based QoS Aware Network Service Provisioning
    Caba, Cosmin
    Soler, Jose
    [J]. MOBILE, SECURE, AND PROGRAMMABLE NETWORKING, MSPN 2015, 2015, 9395 : 119 - 133
  • [9] TD-RA policy-enforcement framework for an SDN-based IoT architecture
    Lahlou, Sara
    Moukafih, Youness
    Sebbar, Anass
    Zkik, Karim
    Boulmalf, Mohammed
    Ghogho, Mounir
    [J]. JOURNAL OF NETWORK AND COMPUTER APPLICATIONS, 2022, 204
  • [10] Brew: A Security Policy Analysis Framework for Distributed SDN-Based Cloud Environments
    Pisharody, Sandeep
    Natarajan, Janakarajan
    Chowdhary, Ankur
    Alshalan, Abdullah
    Huang, Dijiang
    [J]. IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2019, 16 (06) : 1011 - 1025
12345