Abstract

Software Defined Network (SDN) and Network Function Virtualization (NFV) are bringing many advantages to optimize and automatize security management at the network edge, enabling the deployment of virtual network security functions (VSFs) in MEC nodes, to strengthen the end-to-end security in IoT environments. The benefits could exploit in mobile MEC nodes on-boarded in Unmanned Aerial Vehicles (UAV), as the UAVs would carry on-demand VSFs to particular physical locations. To that aim, this paper proposes a novel NFV/SDN-based zero-touch security management framework for automatic orchestration, configuration and deployment of lightweight VSF in MEC-UAVs, that considers diverse contextual factors, related to both physical and virtual conditions, to optimize the security orchestration. Our solution aims to deploy on-demand VSFs, such as virtual Firewalls (vFirewalls), vProxies, vIDS (Intrusion Detection Systems) and vAAA, to assist during emerging situations in particular physical locations, protecting and optimizing the managed IoT network, as well as replacing or supporting compromised physical devices like IoT gateways. The proposed solution has been implemented, deployed and evaluated in a real testbed with real drones, showing its feasibility and performance.

Highlights

  • As the Internet of Things (IoT) expands, the security issues derived by this technology are increasing [1]

  • Despite the existence of some initial works that onboard Multi-Access Edge Computing (MEC)-nodes in aerial vehicles [6]–[8] while leveraging Software Defined Network (SDN)/Network Function Virtualization (NFV) to focus on network management and control aspects there is a lack of security management work in the field

  • This paper proposes a NFV/SDN-based security orchestration and enforcement framework of Virtual Network Functions (VNFs) at the edge of the network in MEC-powered Unmanned Aerial Vehicles (UAV), that allows achieving a cloud continuum and end-to-end security management between end IoT devices, the mobile edge, and the data center

Read more

Summary

INTRODUCTION

As the Internet of Things (IoT) expands, the security issues derived by this technology are increasing [1]. Despite the existence of some initial works that onboard MEC-nodes in aerial vehicles [6]–[8] while leveraging SDN/NFV to focus on network management and control aspects there is a lack of security management work in the field. To fill this gap, this paper proposes a NFV/SDN-based security orchestration and enforcement framework of Virtual Network Functions (VNFs) at the edge of the network in MEC-powered UAVs, that allows achieving a cloud continuum and end-to-end security management between end IoT devices, the mobile edge, and the data center.

RELATED WORK
USE CASE 1
USE CASE 2
SECURITY ORCHESTRATION IN UA
ARCHITECTURE INSTANTIATION AND DEPLOYMENT
Findings
VIII. CONCLUSIONS
Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.