Testbed for security orchestration in a network function virtualization environment

Aapo Kalliola, Shankar Lal, Kimmo Ahola, Ian Oliver, Miche Yoan, Silke Holtmanns

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    5 Citations (Scopus)

    Abstract

    We present a testbed implementation for the development, evaluation and demonstration of security orchestration in a network function virtualization environment. As a specific scenario, we demonstrate how an intelligent response to DDoS and various other kinds of targeted attacks can be formulated such that these attacks and future variations can be mitigated. We utilise machine learning to characterise normal network traffic, attacks and responses, then utilise this information to orchestrate virtualized network functions around affected components to isolate these components and to capture, redirect and filter traffic (e.g. honeypotting) for additional analysis. This allows us to maintain a high level of network quality of service to given network functions and components despite adverse network conditions.
    Original languageEnglish
    Title of host publication2017 IEEE Conference on Network Function Virtualization and Software Defined Networks, NFV-SDN 2017
    PublisherIEEE Institute of Electrical and Electronic Engineers
    Number of pages4
    ISBN (Electronic)978-1-5386-3285-7
    ISBN (Print)978-1-5386-3286-4
    DOIs
    Publication statusPublished - 7 Dec 2017
    MoE publication typeA4 Article in a conference publication
    EventConference on Network Function Virtualization and Software Defined Networks, NFV-SDN 2017 - Berlin, Germany
    Duration: 6 Dec 20178 Dec 2017

    Conference

    ConferenceConference on Network Function Virtualization and Software Defined Networks, NFV-SDN 2017
    Abbreviated titleNFV-SDN 2017
    Country/TerritoryGermany
    CityBerlin
    Period6/12/178/12/17

    Funding

    This work was supported by the DIMECC Cyber Trust programme.

    Keywords

    • cloud computing
    • computer crime
    • network function virtualization
    • quality of service

    Fingerprint

    Dive into the research topics of 'Testbed for security orchestration in a network function virtualization environment'. Together they form a unique fingerprint.

    Cite this