In this talk I present an overview of SecFuNet project. It is a STREP from EC (European Comission) call FP7-ICT-2011-EU-Brazil targeting the objective Future Internet - security.
The goal of the SecFuNet project is to design and develop a coherent security architecture for virtual networks and cloud accesses. The proposed architecture will provide solutions allowing the management of the security of communications for all machines connected to a public cloud using virtual networks. Hence, we need a coherent and robust identification scheme as well as a strong authentication system. Algorithms robust to intrusions are also needed for creating a secure environment. Besides, the proposed architecture must guarantee security in the virtualized infrastructure, through isolation of virtual networks and access control for users and managers. The identification of authorized users, however, must not compromise their privacy. Moreover, it is necessary to bring an ergonomic security scheme that is acceptable for all users, even those unknowledgeable in computer science. And finally, the proposed scheme must take into account the heterogeneity of equipment (wireless and wired) to preserve interoperability.
As the world becomes more connected, security needs to be at the forefront of people’s minds as they use mobile devices to live every day life. Here are 5 things to consider when using your mobile device.
The goal of the SecFuNet project is to design and develop a coherent security architecture for virtual networks and cloud accesses. The proposed architecture will provide solutions allowing the management of the security of communications for all machines connected to a public cloud using virtual networks. Hence, we need a coherent and robust identification scheme as well as a strong authentication system. Algorithms robust to intrusions are also needed for creating a secure environment. Besides, the proposed architecture must guarantee security in the virtualized infrastructure, through isolation of virtual networks and access control for users and managers. The identification of authorized users, however, must not compromise their privacy. Moreover, it is necessary to bring an ergonomic security scheme that is acceptable for all users, even those unknowledgeable in computer science. And finally, the proposed scheme must take into account the heterogeneity of equipment (wireless and wired) to preserve interoperability.
As the world becomes more connected, security needs to be at the forefront of people’s minds as they use mobile devices to live every day life. Here are 5 things to consider when using your mobile device.
Redes LTE Comunitárias no Brasil: Modelamento, Implantação e Manutenção Sustentáveis com base em Novos Paradigmas de Redes.
Projeto financiado pela FAPESP Processo: 18/23101-0
Resumo
Em relatório publicado pelo Comitê Gestor da Internet no Brasil (CGI.br) em 2018, em termos de acesso à Internet por banda larga no Brasil, há uma ampla desigualdade entre as classes econômicas A/B (maior) e D/E (menor), fato evidenciado nas análises entre as áreas urbanas e rural. Além de evidenciar que cerca de 34% dos brasileiros ainda não possuem acesso à Internet, o relatório também explica que o acesso à Internet é um catalisador de desenvolvimento social, econômico e tecnológico: fato consagrado em diversas pesquisas internacionais e enfatizado pela organização Internet Society. Redes sem fio comunitárias têm se tornado um meio sustentável de promover meios acessíveis de conexão à Internet,tanto em áreas rurais remotas quanto em regiões urbanas densas. Em sua ampla maioria, redes sem fio comunitárias adotam a tecnologia wifi, no entanto apenas recentemente, devido ao desenvolvimento de tecnologias de código livre e de baixo custo, o padrão Long-Term Evolution (LTE) começou a ser explorado para estes fins. Logo, não há conhecimento na literatura acadêmica de estudos que busquem utilizar e melhorar o padrão LTE aplicado à redes sem fio comunitárias. Nesse escopo, esta proposta busca trazer conceitos inovadores de novos paradigmas de redes, Redes Definidas por Software (Software Defined Networks -SDN) e Virtualização de Funções de Rede (Network Functions Virtualization - NFV), para o desenvolvimento de redes LTE comunitárias. Por meio de uma metodologia ágil de testes,conceitos de SDN e NFV serão aplicados no desenvolvimento de mecanismos que realizem o gerenciamento inteligente de recursos de redes LTE comunitárias visando desempenho eficiente e tolerância a falhas robusta, i.e., a sustentabilidade da rede. Todos estes estudos serão feitos tendo por base um levantamento de características de redes sem fio comunitárias em operação no Brasil proposto para o início do projeto. Ao final, a execução desta proposta irá produzir um material didático elucidando as formas de modelamento, implantação, e manutenção sustentável de uma rede LTE comunitária nos moldes dos estudos realizados por esta proposta (i.e., com todos os dados, avaliações, metodologias, e protótipos). Este material será utilizado como base de uma proposta de implantação de uma rede LTE comunitária no Brasil junto ao programa "Beyond the Net" da Internet Society.
Evento: https://www.lasse.ufpa.br/co5gam/
Video: https://www.youtube.com/watch?v=5dEb9oIAaPY
Congresso Sociedade Brasileira de Computação CSBC2016 Porto Alegre (Brazil)
Workshop on Cloud Networks & Cloudscape Brazil
Tiago Salmito, R&D Directorate, RNP, Brazil
Funded jointly by the European Commission (EC) and the Ministry of Science, Technology and Innovation; Portuguese: Ministério da Ciência, Tecnologia e Inovação (MCTI) of Brazil, the EUBrasilCloudFORUM project supports EU-BR collaborative projects in the collection and promotion of their results and activities. The results will be used to draft a research Roadmap on cloud computing, identifying collaboration needs and opportunities between Europe and Brazil for the European Commission and to MCTI, thus contributing to the definition of future cooperation priorities between the two regions.
A brief introduction to the SCAPE project co-funded by the European Union under the FP7 ICT program. A blog post leading you through the presentation can be found here: http://www.openplanetsfoundation.org/blogs/2012-12-10-scape-project-%E2%80%93-brief-introduction
Condensed summary of OGF standards and recent activities in cloud computing, presented at the CloudScape V conference held Feb. 27-28 2013 in Brussels, Belgium
Scaling Prometheus Metrics in Kubernetes with Telegraf | Chris Goller | Influ...InfluxData
Scaling Prometheus in Kubernetes seems easy with service-discovery, but quickly devolves into manual DevOps snowflake setup. Additionally, a single developer is able to overwhelm a federated Prometheus setup and impact the system as a whole without being able to self-service debug. In this talk, Chris will focus on a variety of architectures using Telegraf to scale scraping in Kubernetes and empower developers.
He’ll describe his experiences around scaling /metrics in the microservices of InfluxData’s Cloud 2.0 Kubernetes system…as he was the single developer that added just one more label…
Towards Secure and Dependable Authentication and Authorization InfrastructuresDiego Kreutz
We propose a resilience architecture for improving the security and dependability of authentication and au- thorization infrastructures, in particular the ones based on RADIUS and OpenID. This architecture employs intrusion- tolerant replication, trusted components and untrusted gate- ways to provide survivable services ensuring compatibility with standard protocols. The architecture was instantiated in two prototypes, one implementing RADIUS and another implementing OpenID. These prototypes were evaluated in fault-free executions, under faults, under attack, and in diverse computing environments. The results show that, beyond being more secure and dependable, our prototypes are capable of achieving the performance requirements of enterprise environ- ments, such as IT infrastructures with more than 400k users.
More Related Content
Similar to SecFutNet project - Secutiry for Future Network
Redes LTE Comunitárias no Brasil: Modelamento, Implantação e Manutenção Sustentáveis com base em Novos Paradigmas de Redes.
Projeto financiado pela FAPESP Processo: 18/23101-0
Resumo
Em relatório publicado pelo Comitê Gestor da Internet no Brasil (CGI.br) em 2018, em termos de acesso à Internet por banda larga no Brasil, há uma ampla desigualdade entre as classes econômicas A/B (maior) e D/E (menor), fato evidenciado nas análises entre as áreas urbanas e rural. Além de evidenciar que cerca de 34% dos brasileiros ainda não possuem acesso à Internet, o relatório também explica que o acesso à Internet é um catalisador de desenvolvimento social, econômico e tecnológico: fato consagrado em diversas pesquisas internacionais e enfatizado pela organização Internet Society. Redes sem fio comunitárias têm se tornado um meio sustentável de promover meios acessíveis de conexão à Internet,tanto em áreas rurais remotas quanto em regiões urbanas densas. Em sua ampla maioria, redes sem fio comunitárias adotam a tecnologia wifi, no entanto apenas recentemente, devido ao desenvolvimento de tecnologias de código livre e de baixo custo, o padrão Long-Term Evolution (LTE) começou a ser explorado para estes fins. Logo, não há conhecimento na literatura acadêmica de estudos que busquem utilizar e melhorar o padrão LTE aplicado à redes sem fio comunitárias. Nesse escopo, esta proposta busca trazer conceitos inovadores de novos paradigmas de redes, Redes Definidas por Software (Software Defined Networks -SDN) e Virtualização de Funções de Rede (Network Functions Virtualization - NFV), para o desenvolvimento de redes LTE comunitárias. Por meio de uma metodologia ágil de testes,conceitos de SDN e NFV serão aplicados no desenvolvimento de mecanismos que realizem o gerenciamento inteligente de recursos de redes LTE comunitárias visando desempenho eficiente e tolerância a falhas robusta, i.e., a sustentabilidade da rede. Todos estes estudos serão feitos tendo por base um levantamento de características de redes sem fio comunitárias em operação no Brasil proposto para o início do projeto. Ao final, a execução desta proposta irá produzir um material didático elucidando as formas de modelamento, implantação, e manutenção sustentável de uma rede LTE comunitária nos moldes dos estudos realizados por esta proposta (i.e., com todos os dados, avaliações, metodologias, e protótipos). Este material será utilizado como base de uma proposta de implantação de uma rede LTE comunitária no Brasil junto ao programa "Beyond the Net" da Internet Society.
Evento: https://www.lasse.ufpa.br/co5gam/
Video: https://www.youtube.com/watch?v=5dEb9oIAaPY
Congresso Sociedade Brasileira de Computação CSBC2016 Porto Alegre (Brazil)
Workshop on Cloud Networks & Cloudscape Brazil
Tiago Salmito, R&D Directorate, RNP, Brazil
Funded jointly by the European Commission (EC) and the Ministry of Science, Technology and Innovation; Portuguese: Ministério da Ciência, Tecnologia e Inovação (MCTI) of Brazil, the EUBrasilCloudFORUM project supports EU-BR collaborative projects in the collection and promotion of their results and activities. The results will be used to draft a research Roadmap on cloud computing, identifying collaboration needs and opportunities between Europe and Brazil for the European Commission and to MCTI, thus contributing to the definition of future cooperation priorities between the two regions.
A brief introduction to the SCAPE project co-funded by the European Union under the FP7 ICT program. A blog post leading you through the presentation can be found here: http://www.openplanetsfoundation.org/blogs/2012-12-10-scape-project-%E2%80%93-brief-introduction
Condensed summary of OGF standards and recent activities in cloud computing, presented at the CloudScape V conference held Feb. 27-28 2013 in Brussels, Belgium
Scaling Prometheus Metrics in Kubernetes with Telegraf | Chris Goller | Influ...InfluxData
Scaling Prometheus in Kubernetes seems easy with service-discovery, but quickly devolves into manual DevOps snowflake setup. Additionally, a single developer is able to overwhelm a federated Prometheus setup and impact the system as a whole without being able to self-service debug. In this talk, Chris will focus on a variety of architectures using Telegraf to scale scraping in Kubernetes and empower developers.
He’ll describe his experiences around scaling /metrics in the microservices of InfluxData’s Cloud 2.0 Kubernetes system…as he was the single developer that added just one more label…
Towards Secure and Dependable Authentication and Authorization InfrastructuresDiego Kreutz
We propose a resilience architecture for improving the security and dependability of authentication and au- thorization infrastructures, in particular the ones based on RADIUS and OpenID. This architecture employs intrusion- tolerant replication, trusted components and untrusted gate- ways to provide survivable services ensuring compatibility with standard protocols. The architecture was instantiated in two prototypes, one implementing RADIUS and another implementing OpenID. These prototypes were evaluated in fault-free executions, under faults, under attack, and in diverse computing environments. The results show that, beyond being more secure and dependable, our prototypes are capable of achieving the performance requirements of enterprise environ- ments, such as IT infrastructures with more than 400k users.
The dark side of SDN and OpenFlow
Security & Dependability issues, challenges, and research opportunities.
Attack vectors and threats.
Practical security assessment of OpenFlow-enabled networks.
Vulnerabilities of current Network Operating Systems (e.g., Cisco IOS).
Computação em Nuvem: conceitos, tendências e aplicações em Software LivreDiego Kreutz
Computação em Nuvem: conceitos, tendências e aplicações em Software Livre
• Definições
• Tendências
• O papel do Software Livre
• Indústria e mercado
• Desafios
Seminário RNP de Capacitação e Inovação - RNP SCI 2010
Mesa redonda: Serviços de rede: uma visão de futuro (Network services: a future vision)
- serviços
- computação em nuvem
- demandas
- percepções e previsões
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
Search and Society: Reimagining Information Access for Radical FuturesBhaskar Mitra
The field of Information retrieval (IR) is currently undergoing a transformative shift, at least partly due to the emerging applications of generative AI to information access. In this talk, we will deliberate on the sociotechnical implications of generative AI for information access. We will argue that there is both a critical necessity and an exciting opportunity for the IR community to re-center our research agendas on societal needs while dismantling the artificial separation between the work on fairness, accountability, transparency, and ethics in IR and the rest of IR research. Instead of adopting a reactionary strategy of trying to mitigate potential social harms from emerging technologies, the community should aim to proactively set the research agenda for the kinds of systems we should build inspired by diverse explicitly stated sociotechnical imaginaries. The sociotechnical imaginaries that underpin the design and development of information access technologies needs to be explicitly articulated, and we need to develop theories of change in context of these diverse perspectives. Our guiding future imaginaries must be informed by other academic fields, such as democratic theory and critical theory, and should be co-developed with social science scholars, legal scholars, civil rights and social justice activists, and artists, among others.
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Let's dive deeper into the world of ODC! Ricardo Alves (OutSystems) will join us to tell all about the new Data Fabric. After that, Sezen de Bruijn (OutSystems) will get into the details on how to best design a sturdy architecture within ODC.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
Accelerate your Kubernetes clusters with Varnish Caching
SecFutNet project - Secutiry for Future Network
1. Security for Future Networks
SecFuNet
Diego Kreutz
kreutz@lasige.di.fc.ul.pt
Navigators' team at
LaSIGE - Large-Scale Informatics Systems Laboratory
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 1
2. Outline
Context
Challenges
Goals
Specific Objectives
Work-packages
FCUL
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 2
3. Context
●
Framework Programme 7
●
EC call: FP7-ICT-2011-EU-Brazil
Date of publication: 28 September, 2010
Deadline: 18 January, 2011
●
Funding Scheme: STREP
Small or medium-scale focused research projects
●
Objective: Future Internet – security
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 3
4. Context
Project info
Name: Security for Future Networks
Acronym: SecFuNet
Duration: 1 May 2011- 1 November 2013
(30 months)
Coordinator: LIP6 - Guy Pujolle
Kickoff meeting: 11 Jully 2011, Paris
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 4
5. Context
1 3
6 2
8
4
7
3 5
8
6 1
7
5
4
2 9
9
EU partners
See also the online map at: http://g.co/maps/8zdxs
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 5
6. Context
12
13
10 12
10
15 13
16 11
11 14
14
15 16
BR partners
See also the online map at: http://g.co/maps/8zdxs
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 6
7. Context
Propose a framework providing:
●
secure identification and authentication
●
secure data transfer
●
secure virtualized infrastructure
●
privacy in virtual network and clouds
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 7
8. Challenges
Main challenge: improve the degree of
security on virtual networks and clouds
➔
coherent and robust identification schemes
➔
algorithms robust to intrusions
➔
guarantee security in the virtualized
infrastructure
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 8
9. Goals
a)Use microcontroller as anchors of trust
b)Introduce an identification system, using
pairs of associated microcontrollers
c)Design an open framework, free of
proprietary technologies
d)Create a Radius SIM array to provide a
unique strong authentication solution
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 9
10. Goals
e)Develop a secure infrastructure for the
virtualized networks and clouds
f) Implement mechanisms for robust
provisioning of IP services
g)Develop cryptographic schemes adapted to
virtual network and clouds
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 10
11. Specific Objectives
Objective 1: design an extensible context
framework for the security of the future networks
Objective 2: authentication with EAP-TLS and
legacy solutions
Objective 3: develop a highly secure
authentication server
Objective 4: develop a highly secure
identification scheme based on AAIs
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 11
12. Specific Objectives
Objective 5: provide a reliable and secure
environment
Objective 6: achieve resilience of the
communications and authentication /
authorization
Objective 7: provide cryptographic algorithms
for future networks
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 12
13. Structure
Structure of SecFuNet as an integrated project.
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 13
14. Structure
Overall project structure and components dependency.
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 14
15. Work-packages
WP0: Project Management, Coordination and
Dissemination
➔
Dissemination and website and video clip
➔
Standardization and Exploitation Plan
WP1: Requirement and Functional Architecture
➔
Virtual network architecture and secure micro-
controller: use cases and first choices
➔
Limitations and requirements of the framework
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 15
16. Work-packages
WP2: Authentication Server
➔
Infrastructure of the authentication server
➔
Array and software of the authentication server
➔
Development and deployment on the network
WP3: Secure Identity Management
➔
Identity management system limitations and
requirements, and prospective AAIs
➔
Identity management system development
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 16
17. Work-packages
WP4: Virtual Network Isolation
➔
State-of-the-art and isolation between virtual
networks
➔
Profiling and virtual network migration
WP5: Infrastructure Resilience
➔
Architecture components for resilient networks
➔
Trustworthy authentication service architecture
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 17
18. Work-packages
WP6: Cryptographic Schemes
➔
Cryptographic requirements
➔
Cryptographic schemes for virtual networks
and cloud accesses
WP7: Testbed
➔
Testbed creation
➔
Test and evaluation experiments
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 18
19. Work-packages
Overall WPs scheduling
Light Blue = milestones with deliverables
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 19
20. Work-packages
MGT = Management
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil
RTD = Research and Technological Development
20
21. FCUL
WP0: project management (tasks)
1.Dissemination
2.Website and video clip
3.Standardization
4.Exploitation Plan
Intermediate (M12) and final reports (M30)
Duration: 30 months
Deliverables: end of each task (M12 and M30)
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 21
22. FCUL
WP1: architecture requirements (tasks)
1.Virtual network architecture and secure
microcontroller: use cases and first choices
2.Limitations and requirements of the framework
FCUL rule: help in defining the items to be
studied in virtual networking environment and on
the secure framework.
Duration: 7 months
Deliverables: end of each task (M3 and M7)
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 22
23. FCUL
WP5: infrastructure resilience (tasks)
1.Architecture components for resilient
networks
2.Trustworthy authentication service
architecture
FCUL rule: lead task 1 an help on task 2.
Duration: 22 months
Deliverables: end of each task (M18 and M21)
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 23
24. FCUL
WP6: cryptographic schemes (tasks)
1.Cryptographic requirements
2.Cryptographic schemes for virtual networks and
cloud accesses
FCUL rule: participate in the definition of the main
security requirements for future virtual networking
environments.
Duration: 21 months
Deliverables: end of each task (M14 and M27)
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 24
25. FCUL
Summary of staff effort.
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 25
26. FCUL
On-going work (research)
●
State of art on security of network
management services
(WP1, WP5 and WP6)
●
State of art on future networks
(WP1, WP5)
How they will be
How they will relate with clouds
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 26
27. FCUL
On-going work (research)
●
Papers, surveys and projects like:
➔
TRONE (trone.di.fc.ul.pt)
➔
MASSIF (www.massif-project.eu)
➔
4WARD (www.4ward-project.eu)
➔
EFFECTS+ (www.effectsplus.eu)
➔
PASSIVE (ict-passive.eu)
➔
SWIFT (www.ist-swift.org)
➔
WOMBAT (www.wombat-project.eu)
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 27
28. FCUL
On-going work (hands-on)
●
TRONE
(Trustworthy and Resilient Operations in a Network Environment)
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 28
29. FCUL
On-going work (hands-on)
●
Typhon
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 29
30. Security for Future Networks
SecFuNet
Diego Kreutz
kreutz@lasige.di.fc.ul.pt
Navigators' team at
LaSIGE - Large-Scale Informatics Systems Laboratory
SecFuNet: STREP 288349 from FP7-ICT-2011-EU-Brazil 30