Systems Modeling: Methodologies and Tools by Antonio Puliafito & Kishor S. Trivedi

Author:Antonio Puliafito & Kishor S. Trivedi
Language: eng
Format: epub
ISBN: 9783319923789
Publisher: Springer International Publishing

11.3.1 Overview

Network security requirements are substantially different from conventional embedding constraints such as bandwidth or CPU time. They typically do not refer to a consumable resource, but rather to a specific set of features that need to be available. For example, a customer might require one of his virtual nodes to be executed in a particularly safe environment, requiring specific protection from the underlying substrate node.

An abstract approach to this problem is to define security levels for substrate and virtual nodes, requiring the embedding algorithm to match these levels appropriately (cf. [9, 13, 14]). However, in practice the concept of strictly hierarchical levels proves to be too abstract. In an environment with multiple involved parties (as it is common in cloud computing), it is difficult to find a comprehensive definition of levels that can satisfy each party.

Instead, it is more likely that customers specify a particular set of security requirements, for example protection by intrusion detection software or by a firewall. A cloud provider, on the other hand, can label its equipment such that the customer’s requests can be mapped appropriately. A motivational example is given next, to demonstrate the use case of such a scenario.

Download

Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.