Skip to main content
SpringerLink
Log in
Book cover

International Conference on Security, Privacy and Anonymity in Computation, Communication and Storage

SpaCCS 2017: Security, Privacy, and Anonymity in Computation, Communication, and Storage pp 139–152Cite as

TIM: A Trust Insurance Mechanism for Network Function Virtualization Based on Trusted Computing

  • Conference paper
  • First Online:

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 10656))

Abstract

As a new network architecture and key technology of 5G, Network Function Virtualization (NFV) is paid special attention in both industry and academia. In the context of NFV, Virtualized Network Functions (VNFs) located in different network computing platforms need collaborate to fulfill an expected networking service. Platform trust authentication and trusted collaboration should be highly ensured in order to support secure and trustworthy 5G mobile networks and wireless systems. However, such a mechanism is still missed in the literature. In this paper, we propose and develop a trust insurance mechanism, named TIM, based on Trusted Computing Platform (TCP) to realize trust authentication and achieve trusted collaboration among VNFs. Performance evaluation shows the effectiveness of TIM with regard to trust attestation accuracy, operation efficiency, and reasonable resource consumption.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

References

  1. Yan, Z., Zhang, P., Vasilakos, A.V.: A security and trust framework for virtualized networks and software-defined networking. Secur. Commun. Netw. 9(16), 3059–3069 (2016)

    Article  Google Scholar 

  2. Yang, W., Fung, C.: A survey on security in network functions virtualization. In: Proceeding of IEEE NetSoft 2016, pp. 15–19, Seoul (2016)

    Google Scholar 

  3. Aljuhani, A., Alharbi, T.: Virtualized network functions security attacks and vulnerabilities. In: Proceeding of IEEE CCWC 2017, pp. 1–4, Las Vegas (2017)

    Google Scholar 

  4. Shin, M.K., Choi, Y., Kwak, H.H., Pack S., Kang M., Choi, J.Y.: Verification for NFV-enabled network services. In: Proceeding of IEEE ICTC 2015, pp. 810–815, Jeju (2015)

    Google Scholar 

  5. Liu, Y., Guo, Z., Shou, G., Hu, Y.: To achieve a security service chain by integration of NFV and SDN. In: Proceeding of IEEE IMCCC 2016, pp. 974–977, Harbin (2016)

    Google Scholar 

  6. Jang, H., Jeong, J., Kim, H., Park, J.S.: A survey on interfaces to network security functions in network virtualization. In: Proceeding of IEEE AINA 2015, pp. 160–163, Gwangiu (2015)

    Google Scholar 

  7. Biczók, G., Sonkoly, B., Bereczky, N., Boyd, C.: Private VNFs for collaborative multi-operator service delivery: an architectural case. In: Proceeding of NOMS 2016, pp. 1249–1252, Istanbul (2016)

    Google Scholar 

  8. Aguado, A., Hugues-Salas, E., Haigh, P.A., Marhuenda, J., Price, A.B., Sibson, P.: Secure NFV orchestration over an SDN-controlled optical network with time-shared quantum key distribution resources. J. Lightwave Technol. 35(8), 1357–1362 (2017)

    Article  Google Scholar 

  9. Bari, M.F., Chowdhury, S. R., Ahmed, R., Boutaba, R.: On orchestrating virtual network functions. In: Proceeding of IEEE CNSM 2015, pp. 50–56, Barcelona (2015)

    Google Scholar 

  10. Strasser, M., Sevnic, P.E.: A software-based TPM emulator for Linux. ETH Zurich, Semesterarbeit (2004)

    Google Scholar 

  11. Ren, J., Liu, L., Zhang, D., Zhang, Q., Ba, H.: Tenants attested trusted cloud service. In: Proceeding. IEEE CLOUD 2016, pp. 600–607, San Francisco (2016)

    Google Scholar 

  12. Yan, Z., Cofta, P.: A mechanism for trust sustainability among trusted computing platforms. In: Katsikas, S., Lopez, J., Pernul, G. (eds.) TrustBus 2004. LNCS, vol. 3184, pp. 11–19. Springer, Heidelberg (2004). https://doi.org/10.1007/978-3-540-30079-3_2

    Chapter  Google Scholar 

  13. Yan, Z.: Trust Management in Mobile Environments - Usable and Autonomic Models. IGI Global, Hershey (2013)

    Google Scholar 

  14. Lauer, H., Kuntze, N.: Hypervisor-based attestation of virtual environments. In: Proceeding of IEEE UIC/ATC/ScalCom/SmartWorld 2016, pp. 333–340, Toulouse (2016)

    Google Scholar 

  15. Mathieu, B., Doyen, G., Mallouli, W., et al.: Monitoring and securing new functions deployed in a virtualized networking environment. In: Proceedings of ICARS 2015, pp. 741–748, Toulouse (2015)

    Google Scholar 

Download references

Acknowledgments

This work is sponsored by the National Key Research and Development Program of China (grant 2016YFB0800700), the NSFC (grants 61672410 and U1536202), the Project Supported by Natural Science Basic Research Plan in Shaanxi Province of China (Program No. 2016ZDJC-06), the 111 project (grants B16037 and B08038), the PhD grant of the Chinese Educational Ministry (grant JY0300130104), and Academy of Finland (grant 308087).

Author information

Authors and Affiliations

  1. The State Key Lab of Integrated Services Networks, School of Cyber Engineering, Xidian University, Xi’an, 710071, China

    Guangwu Xu, Yankun Tang, Zheng Yan & Peng Zhang

  2. Department of Communications and Networking, Aalto University, 02150, Espoo, Finland

    Zheng Yan

Authors
  1. Guangwu Xu
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Yankun Tang
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Zheng Yan
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Peng Zhang
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Zheng Yan .

Editor information

Editors and Affiliations

  1. Guangzhou University , Guangzhou, China

    Guojun Wang

  2. Edith Kinney Gaylord Presidential Professor, University of Oklahoma, Norman, Oklahoma, USA

    Mohammed Atiquzzaman

  3. Aalto University, Espoo, Finland

    Zheng Yan

  4. University of Texas at San Antonio, San Antonio, Texas, USA

    Kim-Kwang Raymond Choo

Rights and permissions

Reprints and permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Xu, G., Tang, Y., Yan, Z., Zhang, P. (2017). TIM: A Trust Insurance Mechanism for Network Function Virtualization Based on Trusted Computing. In: Wang, G., Atiquzzaman, M., Yan, Z., Choo, KK. (eds) Security, Privacy, and Anonymity in Computation, Communication, and Storage. SpaCCS 2017. Lecture Notes in Computer Science(), vol 10656. Springer, Cham. https://doi.org/10.1007/978-3-319-72389-1_13

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-72389-1_13

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-72388-4

  • Online ISBN: 978-3-319-72389-1

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation