Archivio Istituzionale della RicercaUsers currently experience different levels of protection when accessing the Internet via their various personal devices and network connections, due to variable network security conditions and security applications available at each device. The SECURED project addresses these issues by designing an architecture to offload security applications from the end-user devices to a suitable trusted node in the network: the Network Edge Device (NED). Users populate a repository with their security applications and policy, which will then be fetched by the closest NED to protect the user’s traffic when he connects to a network. This setting provides uniform protection, independent of the actual user device and network location (e.g. public WiFi hotspot or 3G mobile connection). In other words, a user-centric approach is fostered by this architecture, opposed to the current device- or network-based security schema, with cost and protection benefits and simultaneously enabling new business models for service and network providers.
Offloading security applications into the network / Lioy, Antonio; Pastor, A.; Risso, FULVIO GIOVANNI OTTAVIO; Sassu, Roberto; Shaw, A. L.. - ELETTRONICO. - (2014). (Intervento presentato al convegno eChallenges e-2014 tenutosi a Belfast (UK) nel 29-30 October 2014).
Offloading security applications into the network
LIOY, ANTONIO;RISSO, FULVIO GIOVANNI OTTAVIO;SASSU, ROBERTO;
2014
Abstract
Users currently experience different levels of protection when accessing the Internet via their various personal devices and network connections, due to variable network security conditions and security applications available at each device. The SECURED project addresses these issues by designing an architecture to offload security applications from the end-user devices to a suitable trusted node in the network: the Network Edge Device (NED). Users populate a repository with their security applications and policy, which will then be fetched by the closest NED to protect the user’s traffic when he connects to a network. This setting provides uniform protection, independent of the actual user device and network location (e.g. public WiFi hotspot or 3G mobile connection). In other words, a user-centric approach is fostered by this architecture, opposed to the current device- or network-based security schema, with cost and protection benefits and simultaneously enabling new business models for service and network providers.
| File | Dimensione | Formato | |
|---|---|---|---|
|
eChallenges_e2014_ref_66.pdf
accesso aperto
Tipologia:
2. Post-print / Author's Accepted Manuscript
Licenza:
Creative commons
Dimensione
259.83 kB
Formato
Adobe PDF
|
259.83 kB | Adobe PDF | Visualizza/Apri |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
https://hdl.handle.net/11583/2573938