Semantic-Aware Security Orchestration in SDN/NFV-Enabled IoT Systems

Zarca, Alejandro Molina; Bagaa, Miloud; Bernabé, Jorge Bernal; Taleb, Tarik; Skarmeta, Antonio F.

doi:10.3390/s20133622

Cited by 27 publications

(5 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [46], the authors introduce a security orchestration framework that is both semanticaware and policy-driven. This framework is designed for orchestrating security measures autonomously in softwarized IoT networks, with a specific focus on ensuring conflict-free security orchestration while optimizing the allocation of security VNFs.…”

Section: Network Softwarization For Iotmentioning

confidence: 99%

Review and analysis of recent advances in intelligent network softwarization for the Internet of Things

Zormati,

Lakhlef,

Ouni

2024

Computer Networks

View full text Add to dashboard Cite

Section: Network Softwarization For Iotmentioning

confidence: 99%

Review and analysis of recent advances in intelligent network softwarization for the Internet of Things

Zormati,

Lakhlef,

Ouni

2024

Computer Networks

View full text Add to dashboard Cite

“…• Flexibility in Security Policy Implementation: By allowing new functionalities to be developed as policies, RINA offers a high degree of flexibility in implementing and updating security measures. This can be especially beneficial in the rapidly evolving landscape of IoT security, where new threats and vulnerabilities often emerge [44]. • Reduction of Functional Redundancies: The ability to plug in policies into existing mechanisms can help reduce functional redundancies in protocols.…”

Section: Programmable Difsmentioning

confidence: 99%

Reconciling Efficiency and Security of the Internet of Things: A Recursive InterNetwork Architecture (RINA) Approach

Teymoori,

Ramezanifarkhani

2023

Preprint

View full text Add to dashboard Cite

The Internet of Things (IoT) has revolutionized our lives by connecting devices to the internet, enabling automation and simplifying daily routines. However, as IoT is built upon the foundation of older network architectures and protocols, such as the Internet, its integration has brought forth significant challenges, particularly in achieving both transport layer efficiency and security at the same time. This paper presents a comprehensive overview of the current network stacks used in IoT and highlights the issues they face in this regard. We propose a novel architectural approach leveraging the Recursive InterNetwork Architecture (RINA) to address these challenges. We thoroughly evaluate how RINA's unique combination of recursion and networking can effectively reconcile the efficiency-security trade-off inherent in IoT networks; this has the potential to overcome the limitations of existing architectures and resolving the long-standing issue with Performance Enhancing Proxies (PEPs) that cannot operate on encrypted connections. We demonstrate the practical application of RINA through two use cases: a smart home environment, where RINA provides a unified networking framework, reducing the complexities of integrating diverse systems, and a healthcare patient monitoring scenario, where RINA ensures seamless integration of legacy devices while maintaining the advantages of the RINA architecture, including security and efficient data transmission. The paper concludes with a comprehensive discussion on potential future research topics, paving the way for an efficient and secure IoT ecosystem.

show abstract

“…A semantic aware, zero-touch and policy-driven security orchestration framework in SDN/NFV aware IoT scenarios for automatic and conflict-less security orchestration is proposed in [18]. The proposed framework ensures the optimal allocation and the service function chaining (SFC)s [19] of the virtual security functions (VSFs).…”

Section: Related Work -Security Orchestrationmentioning

confidence: 99%

“…When considering the E2E latency of a particular network slice, it depends on two parameters: service delay and propagation delay [18]. Service delay considers the processing time of the data sent by a source VNF at the destination VNF.…”

Section: B System Constraints Of the Proposed Modelmentioning

confidence: 99%