Assuring virtual network function image integrity and host sealing in Telco cloud

Shankar Lal; Sowmya Ravidas; Ian Oliver; Tarik Taleb

doi:10.1109/ICC.2017.7997299

Assuring virtual network function image integrity and host sealing in Telco cloud

Shankar Lal, Sowmya Ravidas, Ian Oliver, Tarik Taleb

Nokia Bell Labs

Tutkimustuotos: Artikkeli kirjassa/konferenssijulkaisussa › Conference article in proceedings › Scientific › vertaisarvioitu

16 Sitaatiot (Scopus)

Abstrakti

In Telco cloud environment, virtual network functions (VNFs) can be shipped in the form of virtual machine images and hosted over commodity hardware. It is likely that these VNF images will contain highly sensitive data and mission critical network operations. For this reason, these VNF images are prone to malicious tampering during shipping and even after uploaded to the cloud image database. Furthermore, due to various applications, there is a requirement from mobile network operators to seal VNFs on specific platforms which satisfy certain hardware and software configurations. This requires cloud service providers to introduce some mechanisms to verify VNF image integrity and host sealing before the instantiation of VNFs. In this paper, we present a proof of concept demonstrated with the help of an experimental setup to solve the above-mentioned problems. We also evaluate the performance of the envisioned setup and present some insights on its usability.

Alkuperäiskieli	Englanti
Otsikko	2017 IEEE International Conference on Communications, ICC 2017
Kustantaja	IEEE
Sivumäärä	6
ISBN (elektroninen)	9781467389990
DOI - pysyväislinkit	https://doi.org/10.1109/ICC.2017.7997299
Tila	Julkaistu - 28 heinäk. 2017
OKM-julkaisutyyppi	A4 Artikkeli konferenssijulkaisussa
Tapahtuma	IEEE International Conference on Communications - Paris, Ranska Kesto: 21 toukok. 2017 → 25 toukok. 2017

Julkaisusarja

Nimi	IEEE International Conference on Communications
Kustantaja	IEEE
ISSN (painettu)	1550-3607
ISSN (elektroninen)	1938-1883

Conference

Conference	IEEE International Conference on Communications
Lyhennettä	ICC
Maa/Alue	Ranska
Kaupunki	Paris
Ajanjakso	21/05/2017 → 25/05/2017

Pääsy asiakirjaan

10.1109/ICC.2017.7997299

Muut tiedostot ja linkit

Link to publication in Scopus

Siteeraa tätä

@inproceedings{ec221c31a2b648ea97a0a3190917be05,

title = "Assuring virtual network function image integrity and host sealing in Telco cloud",

abstract = "In Telco cloud environment, virtual network functions (VNFs) can be shipped in the form of virtual machine images and hosted over commodity hardware. It is likely that these VNF images will contain highly sensitive data and mission critical network operations. For this reason, these VNF images are prone to malicious tampering during shipping and even after uploaded to the cloud image database. Furthermore, due to various applications, there is a requirement from mobile network operators to seal VNFs on specific platforms which satisfy certain hardware and software configurations. This requires cloud service providers to introduce some mechanisms to verify VNF image integrity and host sealing before the instantiation of VNFs. In this paper, we present a proof of concept demonstrated with the help of an experimental setup to solve the above-mentioned problems. We also evaluate the performance of the envisioned setup and present some insights on its usability.",

author = "Shankar Lal and Sowmya Ravidas and Ian Oliver and Tarik Taleb",

year = "2017",

month = jul,

day = "28",

doi = "10.1109/ICC.2017.7997299",

language = "English",

series = "IEEE International Conference on Communications",

publisher = "IEEE",

booktitle = "2017 IEEE International Conference on Communications, ICC 2017",

address = "United States",

note = "IEEE International Conference on Communications, ICC ; Conference date: 21-05-2017 Through 25-05-2017",

}

Lal, S, Ravidas, S, Oliver, I & Taleb, T 2017, Assuring virtual network function image integrity and host sealing in Telco cloud. julkaisussa 2017 IEEE International Conference on Communications, ICC 2017., 7997299, IEEE International Conference on Communications, IEEE, IEEE International Conference on Communications, Paris, Ranska, 21/05/2017. https://doi.org/10.1109/ICC.2017.7997299

Assuring virtual network function image integrity and host sealing in Telco cloud. / Lal, Shankar; Ravidas, Sowmya; Oliver, Ian et al.
2017 IEEE International Conference on Communications, ICC 2017. IEEE, 2017. 7997299 (IEEE International Conference on Communications).

Tutkimustuotos: Artikkeli kirjassa/konferenssijulkaisussa › Conference article in proceedings › Scientific › vertaisarvioitu

TY - GEN

T1 - Assuring virtual network function image integrity and host sealing in Telco cloud

AU - Lal, Shankar

AU - Ravidas, Sowmya

AU - Oliver, Ian

AU - Taleb, Tarik

PY - 2017/7/28

Y1 - 2017/7/28

N2 - In Telco cloud environment, virtual network functions (VNFs) can be shipped in the form of virtual machine images and hosted over commodity hardware. It is likely that these VNF images will contain highly sensitive data and mission critical network operations. For this reason, these VNF images are prone to malicious tampering during shipping and even after uploaded to the cloud image database. Furthermore, due to various applications, there is a requirement from mobile network operators to seal VNFs on specific platforms which satisfy certain hardware and software configurations. This requires cloud service providers to introduce some mechanisms to verify VNF image integrity and host sealing before the instantiation of VNFs. In this paper, we present a proof of concept demonstrated with the help of an experimental setup to solve the above-mentioned problems. We also evaluate the performance of the envisioned setup and present some insights on its usability.

AB - In Telco cloud environment, virtual network functions (VNFs) can be shipped in the form of virtual machine images and hosted over commodity hardware. It is likely that these VNF images will contain highly sensitive data and mission critical network operations. For this reason, these VNF images are prone to malicious tampering during shipping and even after uploaded to the cloud image database. Furthermore, due to various applications, there is a requirement from mobile network operators to seal VNFs on specific platforms which satisfy certain hardware and software configurations. This requires cloud service providers to introduce some mechanisms to verify VNF image integrity and host sealing before the instantiation of VNFs. In this paper, we present a proof of concept demonstrated with the help of an experimental setup to solve the above-mentioned problems. We also evaluate the performance of the envisioned setup and present some insights on its usability.

UR - http://www.scopus.com/inward/record.url?scp=85028320635&partnerID=8YFLogxK

U2 - 10.1109/ICC.2017.7997299

DO - 10.1109/ICC.2017.7997299

M3 - Conference article in proceedings

AN - SCOPUS:85028320635

T3 - IEEE International Conference on Communications

BT - 2017 IEEE International Conference on Communications, ICC 2017

PB - IEEE

T2 - IEEE International Conference on Communications

Y2 - 21 May 2017 through 25 May 2017

ER -

Assuring virtual network function image integrity and host sealing in Telco cloud

Abstrakti

Julkaisusarja

Conference

Pääsy asiakirjaan

Muut tiedostot ja linkit

Sormenjälki

Siteeraa tätä