Cargando…
PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation
Small and medium enterprises are significantly hampered by cyber-threats as they have inherently limited skills and financial capacities to anticipate, prevent, and handle security incidents. The EU-funded PALANTIR project aims at facilitating the outsourcing of the security supervision to external...
Autores principales: | , , , , , , , , |
---|---|
Formato: | Online Artículo Texto |
Lenguaje: | English |
Publicado: |
MDPI
2023
|
Materias: | |
Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9919989/ https://www.ncbi.nlm.nih.gov/pubmed/36772695 http://dx.doi.org/10.3390/s23031658 |
_version_ | 1784886959761522688 |
---|---|
author | Compastié, Maxime López Martínez, Antonio Fernández, Carolina Gil Pérez, Manuel Tsarsitalidis, Stylianos Xylouris, George Mlakar, Izidor Kourtis, Michail Alexandros Šafran, Valentino |
author_facet | Compastié, Maxime López Martínez, Antonio Fernández, Carolina Gil Pérez, Manuel Tsarsitalidis, Stylianos Xylouris, George Mlakar, Izidor Kourtis, Michail Alexandros Šafran, Valentino |
author_sort | Compastié, Maxime |
collection | PubMed |
description | Small and medium enterprises are significantly hampered by cyber-threats as they have inherently limited skills and financial capacities to anticipate, prevent, and handle security incidents. The EU-funded PALANTIR project aims at facilitating the outsourcing of the security supervision to external providers to relieve SMEs/MEs from this burden. However, good practices for the operation of SME/ME assets involve avoiding their exposure to external parties, which requires a tightly defined and timely enforced security policy when resources span across the cloud continuum and need interactions. This paper proposes an innovative architecture extending Network Function Virtualisation to externalise and automate threat mitigation and remediation in cloud, edge, and on-premises environments. Our contributions include an ontology for the decision-making process, a Fault-and-Breach-Management-based remediation policy model, a framework conducting remediation actions, and a set of deployment models adapted to the constraints of cloud, edge, and on-premises environment(s). Finally, we also detail an implementation prototype of the framework serving as evaluation material. |
format | Online Article Text |
id | pubmed-9919989 |
institution | National Center for Biotechnology Information |
language | English |
publishDate | 2023 |
publisher | MDPI |
record_format | MEDLINE/PubMed |
spelling | pubmed-99199892023-02-12 PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation Compastié, Maxime López Martínez, Antonio Fernández, Carolina Gil Pérez, Manuel Tsarsitalidis, Stylianos Xylouris, George Mlakar, Izidor Kourtis, Michail Alexandros Šafran, Valentino Sensors (Basel) Article Small and medium enterprises are significantly hampered by cyber-threats as they have inherently limited skills and financial capacities to anticipate, prevent, and handle security incidents. The EU-funded PALANTIR project aims at facilitating the outsourcing of the security supervision to external providers to relieve SMEs/MEs from this burden. However, good practices for the operation of SME/ME assets involve avoiding their exposure to external parties, which requires a tightly defined and timely enforced security policy when resources span across the cloud continuum and need interactions. This paper proposes an innovative architecture extending Network Function Virtualisation to externalise and automate threat mitigation and remediation in cloud, edge, and on-premises environments. Our contributions include an ontology for the decision-making process, a Fault-and-Breach-Management-based remediation policy model, a framework conducting remediation actions, and a set of deployment models adapted to the constraints of cloud, edge, and on-premises environment(s). Finally, we also detail an implementation prototype of the framework serving as evaluation material. MDPI 2023-02-02 /pmc/articles/PMC9919989/ /pubmed/36772695 http://dx.doi.org/10.3390/s23031658 Text en © 2023 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/). |
spellingShingle | Article Compastié, Maxime López Martínez, Antonio Fernández, Carolina Gil Pérez, Manuel Tsarsitalidis, Stylianos Xylouris, George Mlakar, Izidor Kourtis, Michail Alexandros Šafran, Valentino PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation |
title | PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation |
title_full | PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation |
title_fullStr | PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation |
title_full_unstemmed | PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation |
title_short | PALANTIR: An NFV-Based Security-as-a-Service Approach for Automating Threat Mitigation |
title_sort | palantir: an nfv-based security-as-a-service approach for automating threat mitigation |
topic | Article |
url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9919989/ https://www.ncbi.nlm.nih.gov/pubmed/36772695 http://dx.doi.org/10.3390/s23031658 |
work_keys_str_mv | AT compastiemaxime palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation AT lopezmartinezantonio palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation AT fernandezcarolina palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation AT gilperezmanuel palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation AT tsarsitalidisstylianos palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation AT xylourisgeorge palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation AT mlakarizidor palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation AT kourtismichailalexandros palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation AT safranvalentino palantirannfvbasedsecurityasaserviceapproachforautomatingthreatmitigation |