Visible to the public Attestation of Trusted and Reliable Service Function Chains in the ETSI-NFV Framework

TitleAttestation of Trusted and Reliable Service Function Chains in the ETSI-NFV Framework
Publication TypeConference Paper
Year of Publication2020
AuthorsSuriano, Antonio, Striccoli, Domenico, Piro, Giuseppe, Bolla, Raffele, Boggia, Gennaro
Conference Name2020 6th IEEE Conference on Network Softwarization (NetSoft)
Date PublishedJuly 2020
ISBN Number978-1-7281-5684-2
Keywordsattestation, composability, Computer architecture, Hardware, Human Behavior, Monitoring, network function virtualization, pubcrawl, remote attestation, resilience, Resiliency, security, service function chain, Software, software reliability, trustworthiness

The new generation of digital services are natively conceived as an ordered set of Virtual Network Functions, deployed across boundaries and organizations. In this context, security threats, variable network conditions, computational and memory capabilities and software vulnerabilities may significantly weaken the whole service chain, thus making very difficult to combat the newest kinds of attacks. It is thus extremely important to conceive a flexible (and standard-compliant) framework able to attest the trustworthiness and the reliability of each single function of a Service Function Chain. At the time of this writing, and to the best of authors knowledge, the scientific literature addressed all of these problems almost separately. To bridge this gap, this paper proposes a novel methodology, properly tailored within the ETSI-NFV framework. From one side, Software-Defined Controllers continuously monitor the properties and the performance indicators taken from networking domains of each single Virtual Network Function available in the architecture. From another side, a high-level orchestrator combines, on demand, the suitable Virtual Network Functions into a Service Function Chain, based on the user requests, targeted security requirements, and measured reliability levels. The paper concludes by further explaining the functionalities of the proposed architecture through a use case.

Citation Keysuriano_attestation_2020