RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
Safeguarding VNF Credentials with Intel SGX
RISE., Swedish ICT, SICS, Security Lab.ORCID-id: 0000-0003-0132-857X
RISE - Research Institutes of Sweden, ICT, SICS.ORCID-id: 0000-0002-6332-5078
2017 (engelsk)Inngår i: SIGCOMM Posters and Demos '17 Proceedings of the SIGCOMM Posters and Demos, Association for Computing Machinery (ACM), 2017, s. 144-146Konferansepaper, Poster (with or without abstract) (Fagfellevurdert)
Abstract [en]

Operators use containers – enabled by operating system (OS) level virtualization – to deploy virtual network functions (VNFs) that access the centralized network controller in software-defined net- working (SDN) deployments. While SDN allows flexible network configuration, it also increases the attack surface on the network deployment [8]. For example, insecure communication channels may be tapped to extract or inject sensitive data transferred on the north-bound interface, between the network controller and VNFs; furthermore, to protect the network controller from malicious VNF instances, the integrity and authenticity of VNFs must be verified prior to deployment.o mitigate the risks described above, we implemented a prototype that leverages hardware-based mechanisms for isolated execution implemented by Intel SGX in combination with a run-time integrity measurement subsystem, namely Linux Integrity Measure- ment Architecture (IMA)1. This prototype is a first step towards providing to tenants and end-users integrity guarantees regarding the network components in SDN deployments.

sted, utgiver, år, opplag, sider
Association for Computing Machinery (ACM), 2017. s. 144-146
Emneord [en]
SGX, security, VNF, NFV, SDN
HSV kategori
Identifikatorer
URN: urn:nbn:se:ri:diva-32952DOI: 10.1145/3123878.3132016ISBN: 978-1-4503-5057-0 (tryckt)OAI: oai:DiVA.org:ri-32952DiVA, id: diva2:1170174
Konferanse
SIGCOMM 2017, August 22-24, 2017, Los Angeles, California, USA
Tilgjengelig fra: 2018-01-02 Laget: 2018-01-02 Sist oppdatert: 2018-01-13bibliografisk kontrollert

Open Access i DiVA

fulltext(367 kB)18 nedlastinger
Filinformasjon
Fil FULLTEXT01.pdfFilstørrelse 367 kBChecksum SHA-512
f815c0f76ab6ccf2f9b04a4109b897202f5efcaa8b653b93f8df5fd28a978a9e8bbe043fbeedcd222d58fd030ae7655557742da7f8bdfe0d0c2893921fef83bf
Type fulltextMimetype application/pdf

Andre lenker

Forlagets fullteksthttp://dl.acm.org/citation.cfm?id=3132016

Søk i DiVA

Av forfatter/redaktør
Paladi, NicolaeKarlsson, Linus
Av organisasjonen

Søk utenfor DiVA

GoogleGoogle Scholar
Totalt: 18 nedlastinger
Antall nedlastinger er summen av alle nedlastinger av alle fulltekster. Det kan for eksempel være tidligere versjoner som er ikke lenger tilgjengelige

doi
isbn
urn-nbn

Altmetric

doi
isbn
urn-nbn
Totalt: 7 treff
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf