Security in Network Functions Virtualization

Author: Zhang   Zonghua;Meddahi   Ahmed  

Publisher: Elsevier Science‎

Publication year: 2017

E-ISBN: 9780081023716

P-ISBN(Paperback): 9781785482571

Subject: TP393 computer network

Keyword: 计算机网络

Language: ENG

Access to resources Favorite

Disclaimer: Any content in publications that violate the sovereignty, the constitution or regulations of the PRC is not accepted or approved by CNPIEC.

Description

The software and networking industry is experiencing a rapid development and deployment of Network Functions Visualization (NFV) technology, in both enterprise and cloud data center networks. One of the primary reasons for this technological trend is that NFV has the capability to reduce CAPEX and OPEX, whilst increasing networking service efficiency, performance, agility, scalability, and resource utilization. Despite such well-recognized benefits, security remains a major concern of network service providers and seriously impedes the further expansion of NFV.

This book is therefore dedicated to investigating and exploring the potential security issues of NFV. It contains three major elements: a thorough overview of the NFV framework and architecture, a comprehensive threat analysis aiming to establish a layer-specific threat taxonomy for NFV enabled networking services, and a series of comparative studies of security best practices in traditional networking scenarios and in NFV, ultimately leading to a set of recommendations on security countermeasures in NFV.

This book is primarily intended for engineers, engineering students and researchers and those with an interest in the field of networks and telecommunications (architectures, protocols, services) in general, and particularly software-defined network (SDN) and network functions virtualization (NFV)-based security services.

  • Extensively studies security issues in NFV
  • Presents a basis

Chapter

I.2. Security challenges in NFV

1 NFV Management and Orchestration

1.1. NFV Architecture: overview

1.2. Virtualized network function

1.3. Management and orchestration

1.4. Operating support system/business support system (OSS/BSS)

1.5. MANO functional requirements

1.6. State of the art and development trends

2 Use Case Driven Security Threat Analysis

2.1. NFV Infrastructure as a Service (NFVIaaS)

2.2. Virtual Network Platform as a Service (VNPaaS)

2.3. Virtual Network Function as a Service (VNFaaS)

2.4. Virtualization of mobile networks

2.5. Fixed access network functions virtualization

2.6. Concluding remarks

3 NFV-based Security Management

3.1. Essential security requirements

3.2. Middleboxes

3.3. Security service orchestration

3.4. NFV-based security management platforms

4 Identity and Access Management in NFV

4.1. Major functions

4.2. Case studies

4.3. NFV-based implementations

4.4. Comparative analysis

5 Intrusion Prevention and Detection in NFV

5.1. Case studies

5.2. NFV-based implementations

5.3. Comparative analysis

6 Network Isolation

6.1. Case studies

6.2. NFV-based implementations

6.3. Comparative analysis

7 Data Protection in NFV

7.1. Case studies

7.2. NFV-based implementations

7.3. Comparative analysis

Conclusion: Challenges and Perspectives

Security management and orchestration

NFV-based security functions

Quality of service (QoS)

Bibliography

Index

Back Cover

The users who browse this book also browse