Assessing lightweight virtualization for security-as-a-service at the network edge

Abderrahmane Boudi, Ivan Farris, Miloud Bagaa, Tarik Taleb

Research output: Contribution to journalArticleScientificpeer-review

6 Citations (Scopus)
131 Downloads (Pure)

Abstract

Accounting for the exponential increase in security threats, the development of new defense strategies for pervasive environments is acquiring an ever-growing importance. The expected avalanche of heterogeneous IoT devices which will populate our industrial factories and smart houses will increase the complexity of managing security requirements in a comprehensive way. To this aim, cloud-based security services are gaining notable impetus to provide security mechanisms according to Security-as-a-Service (SECaaS) model. However, the deployment of security applications in remote cloud data-centers can introduce several drawbacks in terms of traffic overhead and latency increase. To cope with this, Edge Computing can provide remarkable advantages avoiding long routing detours. On the other hand, the limited capabilities of edge node introduce potential constraints in the overall management. This paper focuses on the provisioning of virtualized security services in resource-constrained edge nodes by leveraging lightweight virtualization technologies. Our analysis aims at shedding light on the feasibility of container-based security solutions, thus providing useful guidelines towards the orchestration of security at the edge. Our experiments show that the overhead introduced by the containerization is very light.

Original languageEnglish
Pages (from-to)970-977
Number of pages8
JournalIEICE Transactions on Communications
VolumeE102B
Issue number5
DOIs
Publication statusPublished - 1 May 2019
MoE publication typeA1 Journal article-refereed

Keywords

  • Cloud/edge computing
  • IoT
  • NFV
  • Security

Fingerprint Dive into the research topics of 'Assessing lightweight virtualization for security-as-a-service at the network edge'. Together they form a unique fingerprint.

  • Projects

    ANASTACIA: Advanced Networked Agents for Security and Trust Assessment in CPS/IOT Architectures

    Taleb, T., Bagaa, M., Khettab, Y., Addad, R., Bou Hanana, M., Naas, S., Boukhalfa, M., Abada, A., Hireche, O., Mada, B., Nadir, Z. & Nait Abbou, A.

    01/01/201730/04/2020

    Project: EU: Framework programmes funding

    Cite this