Offloading personal security applications to a secure and trusted network node

Author

Bonafiglia, R. ; Ciaccia, F. ; Lioy, A. ; Nemirovsky, M. ; Risso, F. ; Su, T.

Author_Institution

Dip. Autom. e Inf., Politec. di Torino, Turin, Italy

fYear

2015

fDate

13-17 April 2015

Firstpage

1

Lastpage

2

Abstract

The current device-centric protection model against security threats has serious limitations from the final user perspective, among the other the necessity to keep each device updated with the latest security updates and the necessity to replicate all the security polices across all devices. In our model, the protection is decoupled from the users terminals and it is provided through a Trusted Virtual Domain (TVD) instantiated in future edge routers. Each TVD provides unified and homogeneous security for a single user, irrespective of the terminal employed. This paper shows a first prototype implementing this concept through a network element, called Network Edge Device, capable of running the proposed virtualized architecture and making extensive use of SDN technologies, with the aim at providing a uniform security level for the final user.

Keywords

computer network security; telecommunication network routing; trusted computing; TVD; device-centric protection model; edge routers; network edge device; network node security; personal security application offloading; security threats; trusted network node; trusted virtual domain; users terminals; virtualized architecture; Authentication; Computer architecture; Monitoring; Operating systems; Prototypes;

fLanguage

English

Publisher

ieee

Conference_Titel

Network Softwarization (NetSoft), 2015 1st IEEE Conference on

Conference_Location

London

Type

conf

DOI

10.1109/NETSOFT.2015.7116171

Filename

7116171