• KSII Transactions on Internet and Information Systems
    Monthly Online Journal (eISSN: 1976-7277)

Auto-configurable Security Mechanism for NFV

Vol. 12, No. 2, February 27, 2018
10.3837/tiis.2018.02.014, Download Paper (Free):

Abstract

Recently, NFV has attracted attention as a next-generation network virtualization technology for hardware -independent and efficient utilization of resources. NFV is a technology that not only virtualize computing, server, storage, network resources based on cloud computing but also connect Multi-Tenant of VNFs, a software network function. Therefore, it is possible to reduce the cost for constructing a physical network and to construct a logical network quickly by using NFV. However, in NFV, when a new VNF is added to a running Tenant, authentication between VNFs is not performed. Because of this problem, it is impossible to identify the presence of Fake-VNF in the tenant. Such a problem can cause an access from malicious attacker to one of VNFs in tenant as well as other VNFs in the tenant, disabling the NFV environment. In this paper, we propose Auto-configurable Security Mechanism in NFV including authentication between tenant-internal VNFs, and enforcement mechanism of security policy for traffic control between VNFs. This proposal not only authenticate identification of VNF when the VNF is registered, but also apply the security policy automatically to prevent malicious behavior in the tenant. Therefore, we can establish an independent communication channel for VNFs and guarantee a secure NFV environment.


Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article

[IEEE Style]
H. Kim, P. Park, J. Ryou, "Auto-configurable Security Mechanism for NFV," KSII Transactions on Internet and Information Systems, vol. 12, no. 2, pp. 786-799, 2018. DOI: 10.3837/tiis.2018.02.014.

[ACM Style]
HyunJin Kim, PyungKoo Park, and Jaecheol Ryou. 2018. Auto-configurable Security Mechanism for NFV. KSII Transactions on Internet and Information Systems, 12, 2, (2018), 786-799. DOI: 10.3837/tiis.2018.02.014.

[BibTeX Style]
@article{tiis:21683, title="Auto-configurable Security Mechanism for NFV", author="HyunJin Kim and PyungKoo Park and Jaecheol Ryou and ", journal="KSII Transactions on Internet and Information Systems", DOI={10.3837/tiis.2018.02.014}, volume={12}, number={2}, year="2018", month={February}, pages={786-799}}