OnTimeSecure: Secure middleware for federated Network Performance Monitoring.
CNSM(2013)
摘要
Multi-domain network monitoring systems based on active measurements are being widely deployed in high-performance computing and other communities that support large-scale data transfers. Security mechanisms such as policy-driven access to related federated Network Performance Monitoring (NPM) services are important to protect measurement resources and data. In this paper, we present a novel, secure middleware framework viz., "OnTimeSecure" that enables 'user-to-service' and 'service-to-service' authentication, and enforces federated authorization entitlement policies for timely orchestration of NPM services. OnTimeSecure is built using RESTful APIs and features a hierarchical policy-engine that interfaces with a meta-scheduler for prioritization of measurement requests when there is contention of users concurrently attempting to utilize measurement resources. We validate OnTimeSecure in a federated multi-domain NPM infrastructure by performing threat modeling and security risk assessments based on overall attack likelihood and impact factors.
更多查看译文
关键词
computer network performance evaluation,computer network security,middleware,monitoring,NPM services,OnTimeSecure,RESTful API,attack likelihood,federated authorization entitlement policies,federated multidomain NPM infrastructure,federated network performance monitoring services,hierarchical policy engine,high performance computing,large scale data transfers,measurement resources,metascheduler,multidomain network monitoring systems,policy driven access,secure middleware framework,security mechanisms,security risk assessments,service-to-service authentication,threat modeling,user-to-service authentication,enterprise access policy,entitlement service,federated identity,multi-domain measurements,secure middleware
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要