Click here for full text:
Towards Automated Provisioning of Secure Virtualized Networks
Cabuk, Serdar; Dalton, Chris I.; Ramasamy, HariGovind; Schunter, Matthias
HPL-2007-139
Keyword(s): network security; network virtualization; automated security provisioning; security policies; trusted virtual domains
Abstract: We describe a secure network virtualization framework that helps realize the abstraction of Trusted Virtual Domains (TVDs), a security-enhanced variant of virtualized network zones. The fing the instantiation and deployment of the appropriate security mechanism and network virtualization technologies based on an input security model that specifies the required level of isolation and permitted network flows. We have implemented a prototype of the framework based on the Xen hypervisor. Experimental evaluation of the prototype shows that the performance of our virtual networking extensions is comparable to that of the standard Xen configuration. Publication Info: CCS'07, October 29-November 2nd 2007, Alexandria, Virginia, USA.
11 Pages
Back to Index
| 
Printable version
