Name
Abstract | ||
|---|---|---|
We describe a secure network virtualization framework that helps realize the abstraction of Trusted Virtual Domains (TVDs), a security-enhanced variant of virtualized network zones. The framework allows groups of related virtual machines running on separate physical machines to be connected together as though there were on their own separate network fabric and, at the same time, helps enforce cross-group security requirements such as isolation, confidentiality, security, and information flow control. The framework uses existing network virtualization technologies, such as Ethernet encapsulation, VLAN tagging, and VPNs, and combines and orchestrates them appropriately to implement TVDs. Our framework aims at automating the instantiation and deployment of the appropriate security mechanism and network virtualization technologies based on an input security model that specifies the required level of isolation and permitted network flows. We have implemented a prototype of the framework based on the Xen hypervisor. Experimental evaluation of the prototype shows that the performance of our virtual networking extensions is comparable to that of the standard Xen configuration. |
Year | DOI | Venue |
|---|---|---|
2007 | 10.1145/1315245.1315275 | ACM Conference on Computer and Communications Security |
Keywords | Field | DocType |
own separate network fabric,virtualized network zone,cross-group security requirement,input security model,network flow,related virtual machine,secure network virtualization framework,secure virtualized network,xen hypervisor,appropriate security mechanism,network virtualization technology,security policies,network security,security policy | Virtual machine,Computer science,Computer security,Network security,Computer network,Hypervisor,Cloud computing security,Network Access Control,Virtual LAN,Network virtualization,Computer security model | Conference |
Citations | PageRank | References |
32 | 2.14 | 15 |
Authors | ||
4 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Serdar Cabuk | 1 | 285 | 13.55 |
| Chris I. Dalton | 2 | 143 | 15.21 |
| Harigovind V. Ramasamy | 3 | 181 | 16.24 |
| Matthias Schunter | 4 | 941 | 91.12 |