PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation-Reference-Cited by-同舟云学术

PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation

Published:2023-02-02 Issue:3 Volume:23 Page:1658
ISSN:1424-8220
Container-title:Sensors
language:en
Short-container-title:Sensors

Author:

Compastié Maxime¹^ORCID,López Martínez Antonio²^ORCID,Fernández Carolina¹³^ORCID,Gil Pérez Manuel²^ORCID,Tsarsitalidis Stylianos⁴^ORCID,Xylouris George⁵^ORCID,Mlakar Izidor⁶⁷^ORCID,Kourtis Michail Alexandros⁵^ORCID,Šafran Valentino⁶^ORCID

Affiliation:

1. Cybersecurity Department, i2CAT Foundation, 08034 Barcelona, Spain

2. Department of Information and Communication Engineering, University of Murcia, 30100 Murcia, Spain

3. Department of Information and Communication Technologies, Universitat Pompeu Fabra, 08018 Barcelona, Spain

4. UBITECH Ubiquitous Solutions, 15231 Athens, Greece

5. ORION Innovations PC, 11744 Athens, Greece

6. Faculty of Electrical Engineering and Computer Science, University of Maribor, 2000 Maribor, Slovenia

7. Sfera IT d.o.o., 2000 Maribor, Slovenia

Abstract

Small and medium enterprises are significantly hampered by cyber-threats as they have inherently limited skills and financial capacities to anticipate, prevent, and handle security incidents. The EU-funded PALANTIR project aims at facilitating the outsourcing of the security supervision to external providers to relieve SMEs/MEs from this burden. However, good practices for the operation of SME/ME assets involve avoiding their exposure to external parties, which requires a tightly defined and timely enforced security policy when resources span across the cloud continuum and need interactions. This paper proposes an innovative architecture extending Network Function Virtualisation to externalise and automate threat mitigation and remediation in cloud, edge, and on-premises environments. Our contributions include an ontology for the decision-making process, a Fault-and-Breach-Management-based remediation policy model, a framework conducting remediation actions, and a set of deployment models adapted to the constraints of cloud, edge, and on-premises environment(s). Finally, we also detail an implementation prototype of the framework serving as evaluation material.

Funder

European Union Horizon 2020 research and innovation programme

Publisher

MDPI AG

Subject

Electrical and Electronic Engineering,Biochemistry,Instrumentation,Atomic and Molecular Physics, and Optics,Analytical Chemistry

Link

https://www.mdpi.com/1424-8220/23/3/1658/pdf

Reference63 articles.

1. (2023, January 11). 2022 Global Threat Report. Available online: https://www.crowdstrike.com/global-threat-report.

2. (2023, January 11). SMBs Are Fighting against All Odds in Today’s Cyber Landscape. Available online: https://pages.checkpoint.com/smb-2021-security-report.html.

3. (2023, January 11). Managing the Trend of Growing IT Complexity. Available online: https://mysecuritymarketplace.com/reports/managing-the-trend-of-growing-it-complexity.

4. (2023, January 11). 2021 DBIR Master’s Guide. Available online: https://www.verizon.com/business/resources/reports/dbir/2021/masters-guide/.

5. Technology Pillars in the Architecture of Future 5G Mobile Networks: NFV, MEC and SDN;Blanco;Comput. Stand. Interfaces,2017

Cited by 5 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Knowledge Graphs and Semantic Web Tools in Cyber Threat Intelligence: A Systematic Literature Review;Journal of Cybersecurity and Privacy;2024-08-01

2. Efficient SFC Protection Method against Network Attack Risks in Air Traffic Information Networks;Electronics;2024-07-07

3. Towards Smarter Security Orchestration and Automatic Response for CPS and IoT;2023 IEEE International Conference on Cloud Computing Technology and Science (CloudCom);2023-12-04

4. An Approach for Intelligent Behaviour-Based Threat Modelling with Explanations;2023 IEEE Conference on Network Function Virtualization and Software Defined Networks (NFV-SDN);2023-11-07

5. 6GENABLERS: A Holistic Approach to Establish Pervasive Trust in 6G Networks;2023 IEEE 28th International Workshop on Computer Aided Modeling and Design of Communication Links and Networks (CAMAD);2023-11-06