Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Trust anchors in software defined networks
KTH.
2018 (English)In: 23rd European Symposium on Research in Computer Security, ESORICS 2018, Springer, 2018, Vol. 11099, p. 485-504Conference paper, Published paper (Refereed)
Abstract [en]

Advances in software virtualization and network processing lead to increasing network softwarization. Software network elements running on commodity platforms replace or complement hardware components in cloud and mobile network infrastructure. However, such commodity platforms have a large attack surface and often lack granular control and tight integration of the underlying hardware and software stack. Often, software network elements are either themselves vulnerable to software attacks or can be compromised through the bloated trusted computing base. To address this, we protect the core security assets of network elements - authentication credentials and cryptographic context - by provisioning them to and maintaining them exclusively in isolated execution environments. We complement this with a secure and scalable mechanism to enroll network elements into software defined networks. Our evaluation results show a negligible impact on run-time performance and only a moderate performance impact at the deployment stage.

Place, publisher, year, edition, pages
Springer, 2018. Vol. 11099, p. 485-504
Series
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), ISSN 0302-9743 ; 11099
National Category
Communication Systems
Identifiers
URN: urn:nbn:se:kth:diva-234042DOI: 10.1007/978-3-319-98989-1_24ISI: 000460205900024Scopus ID: 2-s2.0-85051855924ISBN: 9783319989884 (print)OAI: oai:DiVA.org:kth-234042DiVA, id: diva2:1245612
Conference
23rd European Symposium on Research in Computer Security, ESORICS 2018, Barcelona, Spain, 3 September 2018 through 7 September 2018
Funder
EU, Horizon 2020, No. 671562 and 731574
Note

QC 20180905

Available from: 2018-09-05 Created: 2018-09-05 Last updated: 2019-03-27Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Search in DiVA

By author/editor
Elbashir, Khalid
By organisation
KTH
Communication Systems

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 7 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf