当前位置:
X-MOL 学术
›
arXiv.cs.NI
›
论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
Five-Layers SDP-Based Hierarchical Security Paradigm for Multi-access Edge Computing
arXiv - CS - Networking and Internet Architecture Pub Date : 2020-07-02 , DOI: arxiv-2007.01246 Jaspreet Singh, Yahuza Bello, Ahmed Refaey, and Amr Mohamed
arXiv - CS - Networking and Internet Architecture Pub Date : 2020-07-02 , DOI: arxiv-2007.01246 Jaspreet Singh, Yahuza Bello, Ahmed Refaey, and Amr Mohamed
The rise in embedded and IoT device usage comes with an increase in LTE usage
as well. About 70\% of an estimated 18 billion IoT devices will be using
cellular LTE networks for efficient connections. This introduces several
challenges such as security, latency, scalability, and quality of service, for
which reason Edge Computing or Fog Computing has been introduced. The edge is
capable of offloading resources to the edge to reduce workload at the cloud.
Several security challenges come with Multi-access Edge Computing (MEC) such as
location-based attacks, the man in the middle attacks, and sniffing. This paper
proposes a Software-Defined Perimeter (SDP) framework to supplement MEC and
provide added security. The SDP is capable of protecting the cloud from the
edge by only authorizing authenticated users at the edge to access services in
the cloud. The SDP is implemented within a Mobile Edge LTE network. Delay
analysis of the implementation is performed, followed by a DoS attack to
demonstrate the resilience of the proposed SDP. Further analyses such as CPU
usage and Port Scanning were performed to verify the efficiency of the proposed
SDP. This analysis is followed by concluding remarks with insight into the
future of the SDP in MEC.
中文翻译:
用于多访问边缘计算的基于 SDP 的五层分层安全范式
嵌入式和物联网设备使用量的增加也伴随着 LTE 使用量的增加。在估计的 180 亿物联网设备中,约有 70% 将使用蜂窝 LTE 网络进行高效连接。这带来了一些挑战,例如安全性、延迟、可扩展性和服务质量,因此引入了边缘计算或雾计算。边缘能够将资源卸载到边缘以减少云中的工作负载。多访问边缘计算 (MEC) 带来了一些安全挑战,例如基于位置的攻击、中间人攻击和嗅探。本文提出了一种软件定义边界 (SDP) 框架来补充 MEC 并提供额外的安全性。SDP 能够通过仅授权边缘的经过身份验证的用户访问云中的服务来保护云不受边缘的影响。SDP 在移动边缘 LTE 网络中实施。执行延迟分析,然后进行 DoS 攻击以证明所提议的 SDP 的弹性。执行 CPU 使用率和端口扫描等进一步分析以验证所提议的 SDP 的效率。此分析之后是总结性评论,深入了解 MEC 中 SDP 的未来。
更新日期:2020-07-03
中文翻译:
用于多访问边缘计算的基于 SDP 的五层分层安全范式
嵌入式和物联网设备使用量的增加也伴随着 LTE 使用量的增加。在估计的 180 亿物联网设备中,约有 70% 将使用蜂窝 LTE 网络进行高效连接。这带来了一些挑战,例如安全性、延迟、可扩展性和服务质量,因此引入了边缘计算或雾计算。边缘能够将资源卸载到边缘以减少云中的工作负载。多访问边缘计算 (MEC) 带来了一些安全挑战,例如基于位置的攻击、中间人攻击和嗅探。本文提出了一种软件定义边界 (SDP) 框架来补充 MEC 并提供额外的安全性。SDP 能够通过仅授权边缘的经过身份验证的用户访问云中的服务来保护云不受边缘的影响。SDP 在移动边缘 LTE 网络中实施。执行延迟分析,然后进行 DoS 攻击以证明所提议的 SDP 的弹性。执行 CPU 使用率和端口扫描等进一步分析以验证所提议的 SDP 的效率。此分析之后是总结性评论,深入了解 MEC 中 SDP 的未来。