Archivio Istituzionale della RicercaCloud-based services often follow the same logical structure of private networks. The lack of physical boundaries and the dependence on third party’s infrastructural security mechanisms often undermine the confidence in the overall security level of virtualized applications. Integrating software instances of common security middleboxes into cloud networks helps overcome most suspicions, but leads to inefficient solutions. In this paper, we describe the vision behind the ASTRID project. The novelty of our concept lies in decoupling detection algorithms from monitoring and inspection tasks, seeking better integration with virtualization frameworks. We briefly elaborate on the overall conceptual architecture and the foundation of its implementation components. Additionally, we give insights on the expected impacts and opportunities brought by this novel paradigm over the existing approaches.
Situational Awareness for Virtualized Services: The ASTRID Approach / Carrega, Alessandro; Repetto, Matteo; Risso, FULVIO GIOVANNI OTTAVIO; Covaci, Stefan; Zafeiropoulos, Anastasios; Giannetsos, Thanassis; Toscano, Orazio. - STAMPA. - (2018). ((Intervento presentato al convegno 2018 IEEE 7th International Conference on Cloud Networking (CloudNet 2018) tenutosi a Tokyo (Japan) nel October 2018 [10.1109/CloudNet.2018.8549540].
Situational Awareness for Virtualized Services: The ASTRID Approach
Fulvio Risso;
2018
Abstract
Cloud-based services often follow the same logical structure of private networks. The lack of physical boundaries and the dependence on third party’s infrastructural security mechanisms often undermine the confidence in the overall security level of virtualized applications. Integrating software instances of common security middleboxes into cloud networks helps overcome most suspicions, but leads to inefficient solutions. In this paper, we describe the vision behind the ASTRID project. The novelty of our concept lies in decoupling detection algorithms from monitoring and inspection tasks, seeking better integration with virtualization frameworks. We briefly elaborate on the overall conceptual architecture and the foundation of its implementation components. Additionally, we give insights on the expected impacts and opportunities brought by this novel paradigm over the existing approaches.
| File | Dimensione | Formato | |
|---|---|---|---|
|
18Cloudnet-Astrid.pdf
accesso aperto
Tipologia:
2. Post-print / Author's Accepted Manuscript
Licenza:
PUBBLICO - Tutti i diritti riservati
Dimensione
298.2 kB
Formato
Adobe PDF
|
298.2 kB | Adobe PDF | Visualizza/Apri |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
https://hdl.handle.net/11583/2752693
Attenzione
Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo