Multi-tenant Isolation of What?: Building a Secure Tenant Isolation Architecture for Cloud Networks
暂无分享,去创建一个
Many security challenges arise when mutually untrusted tenants are co-located in the same virtualized network infrastructure. Cloud systems commonly employ different network isolation mechanisms to prevent interferences among tenants' networks, which may rely on different and complementary isolation strategies. In this work, we define three complementary strategies for addressing multi-tenant isolation in cloud networks, observe that no current virtualization architecture implements all the three strategies, and propose a novel architectural design to cover the identified gap.
[1] Debashis Basak,et al. Virtualizing networking and security in the cloud , 2010, OPSR.
[2] Benny Rochwerger,et al. An intent-based approach for network virtualization , 2013, 2013 IFIP/IEEE International Symposium on Integrated Network Management (IM 2013).