Semantic-aware security orchestration in SDN/NFV-enabled IoT systems

Alejandro Molina Zarca, Miloud Bagaa, Jorge Bernal Bernabe*, Tarik Taleb, Antonio F. Skarmeta

*Corresponding author for this work

Research output: Contribution to journalArticleScientificpeer-review

10 Downloads (Pure)

Abstract

IoT systems can be leveraged by Network Function Virtualization (NFV) and Software-Defined Networking (SDN) technologies, thereby strengthening their overall flexibility, security and resilience. In this sense, adaptive and policy-based security frameworks for SDN/NFV-aware IoT systems can provide a remarkable added value for self-protection and self-healing, by orchestrating and enforcing dynamically security policies and associated Virtual Network Functions (VNF) or Virtual network Security Functions (VSF) according to the actual context. However, this security orchestration is subject to multiple possible inconsistencies between the policies to enforce, the already enforced management policies and the evolving status of the managed IoT system. In this regard, this paper presents a semantic-aware, zero-touch and policy-driven security orchestration framework for autonomic and conflict-less security orchestration in SDN/NFV-aware IoT scenarios while ensuring optimal allocation and Service Function Chaining (SFC) of VSF. The framework relies on Semantic technologies and considers the security policies and the evolving IoT system model to dynamically and formally detect any semantic conflict during the orchestration. In addition, our optimized SFC algorithm maximizes the QoS, security aspects and resources usage during VSF allocation. The orchestration security framework has been implemented and validated showing its feasibility and performance to detect the conflicts and optimally enforce the VSFs.

Original languageEnglish
Article number3622
Pages (from-to)1-26
Number of pages26
JournalSensors (Switzerland)
Volume20
Issue number13
DOIs
Publication statusPublished - Jul 2020
MoE publication typeA1 Journal article-refereed

Keywords

  • IoT
  • NFV
  • Optimization
  • QoS
  • SDN
  • Security
  • Semantic technologies

Fingerprint Dive into the research topics of 'Semantic-aware security orchestration in SDN/NFV-enabled IoT systems'. Together they form a unique fingerprint.

  • Projects

    CSN: Customized Software Networking across Multiple Administrative Domains

    Taleb, T., Maiouak, M., Bagaa, M., Mada, B., El Marai, O., Hellaoui, H., Bekkouche, O., Afolabi, I., Addad, R., Naas, S. & Yang, B.

    01/09/201731/08/2021

    Project: Academy of Finland: Other research funding

    ANASTACIA: Advanced Networked Agents for Security and Trust Assessment in CPS/IOT Architectures

    Taleb, T., Bagaa, M., Khettab, Y., Addad, R., Bou Hanana, M., Naas, S., Boukhalfa, M., Abada, A., Hireche, O., Mada, B., Nadir, Z. & Nait Abbou, A.

    01/01/201730/04/2020

    Project: EU: Framework programmes funding

    Cite this