PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation

Small and medium enterprises are significantly hampered by cyber-threats as they have inherently limited skills and financial capacities to anticipate, prevent, and handle security incidents. The EU-funded PALANTIR project aims at facilitating the outsourcing of the security supervision to external...

Descripción completa

Detalles Bibliográficos
Autores principales: Compastié, Maxime, López Martínez, Antonio, Fernández, Carolina, Gil Pérez, Manuel, Tsarsitalidis, Stylianos, Xylouris, George, Mlakar, Izidor, Kourtis, Michail Alexandros, Šafran, Valentino
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2023
Materias:
Article
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9919989/
https://www.ncbi.nlm.nih.gov/pubmed/36772695
http://dx.doi.org/10.3390/s23031658
_version_ 1784886959761522688
author Compastié, Maxime
López Martínez, Antonio
Fernández, Carolina
Gil Pérez, Manuel
Tsarsitalidis, Stylianos
Xylouris, George
Mlakar, Izidor
Kourtis, Michail Alexandros
Šafran, Valentino
author_facet Compastié, Maxime
López Martínez, Antonio
Fernández, Carolina
Gil Pérez, Manuel
Tsarsitalidis, Stylianos
Xylouris, George
Mlakar, Izidor
Kourtis, Michail Alexandros
Šafran, Valentino
author_sort Compastié, Maxime
collection PubMed
description Small and medium enterprises are significantly hampered by cyber-threats as they have inherently limited skills and financial capacities to anticipate, prevent, and handle security incidents. The EU-funded PALANTIR project aims at facilitating the outsourcing of the security supervision to external providers to relieve SMEs/MEs from this burden. However, good practices for the operation of SME/ME assets involve avoiding their exposure to external parties, which requires a tightly defined and timely enforced security policy when resources span across the cloud continuum and need interactions. This paper proposes an innovative architecture extending Network Function Virtualisation to externalise and automate threat mitigation and remediation in cloud, edge, and on-premises environments. Our contributions include an ontology for the decision-making process, a Fault-and-Breach-Management-based remediation policy model, a framework conducting remediation actions, and a set of deployment models adapted to the constraints of cloud, edge, and on-premises environment(s). Finally, we also detail an implementation prototype of the framework serving as evaluation material.
format Online
Article
Text
id pubmed-9919989
institution National Center for Biotechnology Information
language English
publishDate 2023
publisher MDPI
record_format MEDLINE/PubMed
spelling pubmed-99199892023-02-12 PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation Compastié, Maxime López Martínez, Antonio Fernández, Carolina Gil Pérez, Manuel Tsarsitalidis, Stylianos Xylouris, George Mlakar, Izidor Kourtis, Michail Alexandros Šafran, Valentino Sensors (Basel) Article Small and medium enterprises are significantly hampered by cyber-threats as they have inherently limited skills and financial capacities to anticipate, prevent, and handle security incidents. The EU-funded PALANTIR project aims at facilitating the outsourcing of the security supervision to external providers to relieve SMEs/MEs from this burden. However, good practices for the operation of SME/ME assets involve avoiding their exposure to external parties, which requires a tightly defined and timely enforced security policy when resources span across the cloud continuum and need interactions. This paper proposes an innovative architecture extending Network Function Virtualisation to externalise and automate threat mitigation and remediation in cloud, edge, and on-premises environments. Our contributions include an ontology for the decision-making process, a Fault-and-Breach-Management-based remediation policy model, a framework conducting remediation actions, and a set of deployment models adapted to the constraints of cloud, edge, and on-premises environment(s). Finally, we also detail an implementation prototype of the framework serving as evaluation material. MDPI 2023-02-02 /pmc/articles/PMC9919989/ /pubmed/36772695 http://dx.doi.org/10.3390/s23031658 Text en © 2023 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
spellingShingle Article
Compastié, Maxime
López Martínez, Antonio
Fernández, Carolina
Gil Pérez, Manuel
Tsarsitalidis, Stylianos
Xylouris, George
Mlakar, Izidor
Kourtis, Michail Alexandros
Šafran, Valentino
PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation
title PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation
title_full PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation
title_fullStr PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation
title_full_unstemmed PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation
title_short PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation
title_sort palantir: an nfv-based security-as-a-service approach for automating threat mitigation
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9919989/
https://www.ncbi.nlm.nih.gov/pubmed/36772695
http://dx.doi.org/10.3390/s23031658
work_keys_str_mv AT compastiemaxime palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation
AT lopezmartinezantonio palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation
AT fernandezcarolina palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation
AT gilperezmanuel palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation
AT tsarsitalidisstylianos palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation
AT xylourisgeorge palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation
AT mlakarizidor palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation
AT kourtismichailalexandros palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation
AT safranvalentino palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation

Ejemplares similares