SECAP: Towards Securing Application Provenance in the Cloud

Zawoad, Shams; Hasan, Ragib

doi:10.1109/cloud.2016.0132

Cited by 10 publications

(3 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The proposed system was implemented on Open Platform for Network Function Virtualization (OPNFV) with a simplified Byzantine fault-tolerant consensus protocol (not handling exceptions nor leader election) to provide low-latency consensus. In [47] Blockchain-based system is used as a provenance management system for the applications running in a virtual machine hosted on the cloud to establish trust and accountability. However, the proposed system only protects the logs of application state changes.…”

Section: ) Nfvmentioning

confidence: 99%

A Review on Application of Blockchain in 5G and Beyond Networks: Taxonomy, Field-Trials, Challenges and Opportunities

et al. 2020

View full text Add to dashboard Cite

Until now, every evolution of communication standard was driven by the need for providing high-speed connectivity to the end-user. However, 5G marks a radical shift from this focus as 5G and beyond networks are being designed to be future-proof by catering to diverse requirements of several use cases. These requirements include Ultra-Reliable Low Latency Communications, Massive Machine-Type Communications and Enhanced Mobile Broadband. To realize such features in 5G and beyond, there is a need to rethink how current cellular networks are deployed because designing new radio access technologies and utilizing the new spectrum are not enough. Several technologies, such as software-defined networking, network function virtualization, machine learning and cloud computing, are being integrated into the 5G networks to fulfil the need for diverse requirements. These technologies, however, give rise to several challenges associated with decentralization, transparency, interoperability, privacy and security. To address these issues, Blockchain has emerged as a potential solution due to its capabilities such as transparency, data encryption, auditability, immutability and distributed architecture. In this paper, we review the state-of-art application of Blockchain in 5G network and explore how it can facilitate enabling technologies of 5G and beyond to enable various services at the front-haul, edge and the core. Based on the review, we present a taxonomy of Blockchain application in 5G networks and discuss several issues that can be solved using Blockchain integration. We then present various field-trials and Proof of concept that are using Blockchain to address the challenges faced in the current 5G deployment. Finally, we discuss various challenges that need to be addressed to realize the full potential of Blockchain in beyond 5G networks. The survey presents a broad range of ideas related to Blockchain integration in 5G and beyond networks that address issues such as interoperability, security, mobility, resource allocation, resource sharing and management, energy efficiency and other desirable features.

show abstract

Section: ) Nfvmentioning

confidence: 99%

A Review on Application of Blockchain in 5G and Beyond Networks: Taxonomy, Field-Trials, Challenges and Opportunities

et al. 2020

View full text Add to dashboard Cite

show abstract

“…Eles mostram que a confiança nos provedores de nuvemé incerta e que o comprometimento de umaúnica VNF no núcleo da rede põe em risco todo o serviço fim-a-fim. Zaowat e Hasan propuseram o SECAP, uma estrutura baseada em corrente de blocos para armazenar com segurança umaárvore de proveniência de aplicativos em nuvem [Zawoad and Hasan 2016]. A estrutura protege os registros das mudanças de estado do aplicativo.…”

Section: Trabalhos Relacionadosunclassified

Provendo uma Infraestrutura de Software Fatiada, Isolada e Segura de Funções Virtuais através da Tecnologia de Corrente de Blocos

Rebello¹,

Camilo²,

Silva³

et al. 2019

Workshop Em Blockchain: Teoria, Tecnologias E Aplicações

View full text Add to dashboard Cite

As tecnologias de fatiamento da rede (Network Slicing), virtualização de funções de rede (Network Function Virtualization - NFV) e redes definidas por software (Software-Defined Networking - SDN) proveem serviços fim-a-fim ágeis e sob demanda. A identificação de uma função virtual defeituosa torna-se obrigatória, pois serviços alocam recursos em um ambiente distribuído e sem confiança entre os pares composto por múltiplos inquilinos e provedores de serviço concorrentes. Este artigo propõe e desenvolve uma arquitetura baseada em correntes de blocos para prover auditabilidade às operações de orquestração de fatias de rede. Um protótipo de um caso de uso foi desenvolvido e implementado utilizando a plataforma Hyperledger Fabric na qual cada fatia de rede opera sobre um canal isolado. Os resultados mostram que é possível prover segurança à criação de fatias de rede, mas que a obtenção de consenso e o número de transações requeridas pelas fatias de rede são um grande desafio.

show abstract

“…Bozic et al [15] present an on-going work on a blockchain-based mechanism to protect cloud and NFV orchestration operations, specifically the authentication of orchestration commands in the lifecycles of cloud services. The scheme proposed in [16] helps ensure the necessary integrity and confidentiality properties application provenance in a cloud environment. Rübsamen et al presented,in [17], a system that uses distributed software agents for secure evidence collection to enable automated evaluation during cloud accountability audits.…”

Section: Related Workmentioning

confidence: 99%

A Framework for Blockchain-Based Verification of Integrity and Authenticity

Basu

Dimitrakos

Nakano

et al. 2019

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

In many application scenarios, such as cloud computing and network function virtualisation, entities from different domains or their interactions are short-lived. Yet, it is often necessary to ensure accountability of events recorded by such entities about their application-specific interactions. The distributed and multi-domain nature of this problem makes a decentralised architecture imperative, particularly in the context of key management and trust. This architecture also needs to address challenges in terms of cross-domain privacy and confidentiality of shared data. For concreteness and without loss of generality, we consider the use case of firewalls as virtual network functions (VNFs) across multiple domains where short-lived firewall VNF instances spin up and down, logging events (e.g., security incidents) during their life spans. Such event logs need to exist, for purposes of accountability, beyond the life-cycles of their generating entities. In this position paper, we present a dual blockchain framework that facilitates the verification of integrity as well as authenticity of events while supporting privacy and confidentiality of data shared across multiple domains.

show abstract

SECAP: Towards Securing Application Provenance in the Cloud

Cited by 10 publications

References 11 publications

A Review on Application of Blockchain in 5G and Beyond Networks: Taxonomy, Field-Trials, Challenges and Opportunities

A Review on Application of Blockchain in 5G and Beyond Networks: Taxonomy, Field-Trials, Challenges and Opportunities

Provendo uma Infraestrutura de Software Fatiada, Isolada e Segura de Funções Virtuais através da Tecnologia de Corrente de Blocos

A Framework for Blockchain-Based Verification of Integrity and Authenticity

Contact Info

Product

Resources

About