Towards the Dynamic Provision of Virtualized Security Services. Basile, C., Pitscheider, C., Risso, F., Valenza, F., & Vallini, M. In Cleary, F. & Felici, M., editors, Cyber Security and Privacy - 4th Cyber Security and Privacy Innovation Forum, CSP Innovation Forum 2015, Brussels, Belgium, April 28-29, 2015, Revised Selected Papers, volume 530, of Communications in Computer and Information Science, pages 65–76, 2015. Springer.
Towards the Dynamic Provision of Virtualized Security Services [pdf]Paper  doi  abstract   bibtex   
Network operators face several limitations in terms of infrastructure management and costs when trying to offer security services to a large number of customers with current technologies. Network Functions Virtualization and Software-Defined Networks paradigms try to overcome these limitations by allowing more flexibility, configurability and agility. Unfortunately, the problem of deciding which security services to use, where to place and how to configure them is a multidimensional problem that has no easy solution. This paper provides a model that can be used to determine the best allocation for the security applications needed to satisfy the user requirements while minimizing the cost for the network operator, subject to the different constraints expressed by the involved actors. This model can be exploited to pursue an initial dimensioning and set-up of the system infrastructure or to dynamically adapt it to support the user security policies. Initial validation shows that allocations generated with our model have considerable advantages in terms of costs and performance compared to traditional approaches. © Springer International Publishing Switzerland 2015.

Downloads: 0