Advertisement

VISECO: An Annotated Security Management Framework for 5G

  • Tran Quang ThanhEmail author
  • Stefan Covaci
  • Thomas Magedanz
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 11005)

Abstract

A novel security management framework is presented in this paper leveraging the current ETSI NFV MANO architecture and taking into account Software Defined Security principles. Specifically, the proposed VISECO framework allows developers, service providers to consider security across lifecycle: from embedding of security properties in the source code, parsing and interpreting for automatic deployment to active responding during operation. Mobile operator can use VISECO to secure its infrastructure and to provide “Security-as-a-Service” solution to potential customers such as IoT service providers. As an illustration, a framework prototyping and an IoT use case application are implemented and discussed.

Keywords

5G IoT MANO NFV Security management 

Notes

Acknowledgment

The research leading to these results has partly received funding from the European Community’s Horizon 2020 Framework Programme (ASTRID project [34] under grant no. 786922).

References

  1. 1.
    Gartner Forecasts Worldwide Cloud-Based Security Services to Grow 21 Percent in 2017. http://www.gartner.com/newsroom/id/3744617
  2. 2.
  3. 3.
  4. 4.
  5. 5.
    IETF Interface to Network Security Functions (I2NSF) RFC 8192: Problem Statement and Use Cases, July 2017. https://tools.ietf.org/html/rfc8192
  6. 6.
    Smith, D.: No Stopping Johannesburg’s Traffic Light Thieves, January 2011. http://www.guardian.co.uk/world/2011/jan/06/johannesburg-traffic-light-thieves-sim
  7. 7.
    Fox-Brewster, T.: How Hacked Cameras are Helping Launch the Biggest Attacks the Internet has Ever Seen, September 2016. https://www.forbes.com/sites/thomasbrewster/2016/09/25/brian-krebs-overwatch-ovh-smashed-by-largest-ddos-attacks-ever/
  8. 8.
    Market Guide for Mobile Threat Defense Solutions, August 2017. https://www.gartner.com/doc/3789664/market-guide-mobile-threat-defense
  9. 9.
    Requirements for Client-Facing Interface to Security Controller. https://tools.ietf.org/html/draft-ietf-i2nsf-client-facing-interface-req-03
  10. 10.
    Jaeger, B.: Security orchestrator: introducing a security orchestrator in the context of the ETSI NFV reference architecture. In: 2015 IEEE Trustcom/BigDataSE/ISPA, Helsinki, pp. 1255–1260 (2015)Google Scholar
  11. 11.
    Open Security Controller Project. https://www.opensecuritycontroller.org
  12. 12.
  13. 13.
    T-NOVA European FP7 Project. http://www.t-nova.eu/objectives/
  14. 14.
    5G ENSURE Project. http://www.5gensure.eu
  15. 15.
    5G SONATA Project. http://www.sonata-nfv.eu
  16. 16.
  17. 17.
  18. 18.
    Cloud Security, Identity & Compliance with AWS. https://aws.amazon.com/products/security/
  19. 19.
    Google Cloud Platform Security. https://cloud.google.com/security/
  20. 20.
  21. 21.
    Cloud Native Computing Foundation. https://www.cncf.io/
  22. 22.
  23. 23.
  24. 24.
    ETSI GR NFV-IFA 015: Management and Orchestration; Report on NFV Information Model, January 2017. http://www.etsi.org/deliver/etsi_gr/NFV-IFA/001_099/015/02.01.01_60/gr_NFV-IFA015v020101p.pdf
  25. 25.
  26. 26.
    Open Mobile Alliance: Next Generation Service Interfaces Architecture, May 2012. http://www.openmobilealliance.org/release/NGSI/V1_0-20120529-A/OMA-AD-NGSI-V1_0-20120529-A.pdf
  27. 27.
  28. 28.
  29. 29.
    FIWARE Orion Context Broker GE. https://fiware-orion.readthedocs.io
  30. 30.
    A Simple Yet Powerful Java Rules Engine. https://github.com/j-easy/easy-rules/wiki
  31. 31.
    Drools - Business Rules Management System. https://www.drools.org/
  32. 32.
    Spring Framework: The Source for Modern Java. https://spring.io
  33. 33.
    H2020 ARCADIA Project. http://www.arcadia-framework.eu
  34. 34.
    H2020 ASTRID Project. https://www.astrid-project.eu

Copyright information

© Springer Nature Switzerland AG 2019

Authors and Affiliations

  • Tran Quang Thanh
    • 1
    • 2
    Email author
  • Stefan Covaci
    • 2
  • Thomas Magedanz
    • 1
  1. 1.Fraunhofer FOKUSBerlinGermany
  2. 2.Technical University BerlinBerlinGermany

Personalised recommendations