Implementing Attack-aware Security Function Chain Reordering

Autor: Lukas Iffländer, Samuel Kounev, Lukas Beierlieb, Nishant Rawtani, Klaus-Dieter Lange, Nicolas Fella
Rok vydání: 2020
Předmět:
Zdroj: ACSOS Companion
DOI: 10.1109/acsos-c51401.2020.00055
Popis: Attack-awareness recognizes self-awareness for security systems regarding the occurring attacks. More frequent and intense attacks on cloud and network infrastructures are pushing security systems to the limit. With the end of Moore’s Law, merely scaling against these attacks is no longer economically justified. Previous works have already dealt with the adoption of Software-defined Networking and Network Function Virtualization in security systems and used both approaches to optimize performance by the intelligent placement of security functions. In our previous works, we already made a case for taking the order of security functions into account and dynamically adapt this order. In this work, we propose a reordering framework, provide a proof-of-concept implementation, and validate this implementation in an evaluation environment. The framework’s evaluation proves the feasibility of our concept.
Databáze: OpenAIRE