Theory and implementation of a virtualisation level Future Internet defence in depth architecture

Jerzy Konorski , Piotr Pacyna , Grzegorz Kołaczek , Zbigniew Kotulski , Krzysztof Cabaj , Paweł Szałachowski

Abstract

An EU Future Internet Engineering project currently underway in Poland defines three parallel internets (PIs). The emerging IIP system (IIPS, abbreviating the project's Polish name), has a four-level architecture, with level 2 responsible for creation of virtual resources of the PIs. This paper proposes a three-tier security architecture to address level 2 threats of unauthorised traffic injection and IIPS traffic manipulation or forging. It is argued that the measures to be taken differ in nature from those ensuring classical security attributes. A combination of hard- and soft-security mechanisms produces node reputation and trust metrics, which permits to eliminate or ostracise misbehaving nodes. Experiments carried out in a small-scale IIPS testbed are briefly discussed.
Author Jerzy Konorski - Gdańsk University of Technology (PG)
Jerzy Konorski,,
-
, Piotr Pacyna - AGH University of Science and Technology (AGH)
Piotr Pacyna,,
-
, Grzegorz Kołaczek - Instytut Informatyki (II) [Wydział Informatyki i Zarządzania (WIZ)]
Grzegorz Kołaczek,,
-
, Zbigniew Kotulski (FEIT / IT)
Zbigniew Kotulski,,
- The Institute of Telecommunications
, Krzysztof Cabaj (FEIT / IN)
Krzysztof Cabaj,,
- The Institute of Computer Science
, Paweł Szałachowski
Paweł Szałachowski,,
-
Journal seriesInternational Journal of Trust Management in Computing and Communications, ISSN 2048-8378, [2048-8386]
Issue year2013
Vol1
No3/4
Pages274-299
Publication size in sheets1.25
Keywords in Polishwykrywanie incydentów bezpieczeństwa, wykrywanie anomalii, architektura bezpieczeństwa
Keywords in EnglishFuture Internet project; virtualisation; security architecture; HMAC; hash-based message authentication code; anomaly detection; reputation systems; trust management; Poland; parallel internets; virtual resources; node reputation; misbehaving nodes; defence in depth; network security.
DOIDOI:10.1504/IJTMCC.2013.056431
URL https://www.inderscienceonline.com/doi/abs/10.1504/IJTMCC.2013.056431?journalCode=ijtmcc
ProjectThe Develpment of Digital Communicatios. Project leader: Lubacz Józef, , Phone: 22 234 65 31, start date 04-05-2012, planned end date 31-03-2013, end date 31-12-2013, IT/2012/statut, Completed
WEiTI Działalność statutowa
Languageen angielski
Score (nominal)5
Score sourcejournalList
ScoreMinisterial score = 0.0, 01-03-2020, ArticleFromJournal
Ministerial score (2013-2016) = 5.0, 01-03-2020, ArticleFromJournal
Publication indicators GS Citations = 2.0
Citation count*2 (2020-09-05)
Cite
Share Share

Get link to the record


* presented citation count is obtained through Internet information analysis and it is close to the number calculated by the Publish or Perish system.
Back
Confirmation
Are you sure?