TECHNOLOGIES FOR SCALABLE SECURITY ARCHITECTURE OF VIRTUALIZED NETWORKS
First Claim
1. A network functions virtualization (NFV) security services controller of an NFV security architecture for managing security monitoring services of the NFV security architecture, the NFV security controller comprising:
- a security monitoring policy distribution module to transmit a security monitoring policy, via a secure communication channel, to one or more NFV security services agents distributed in a virtual network function (VNF) infrastructure of the NFV security architecture via an NFV security services provider of a virtual infrastructure manager (VIM) of the NFV security architecture, wherein the security monitoring policy comprises a set of monitoring rules usable by the NFV security services agents to monitor telemetry data of the NFV security architecture and adjust configuration settings of the NFV security services agents; and
a security monitoring policy enforcement module to enforce the security monitoring policy transmitted to the one or more security monitoring components of the NFV security architecture.
1 Assignment
0 Petitions
Accused Products
Abstract
Technologies for performing security monitoring services of a network functions virtualization (NFV) security architecture that includes an NVF security services controller and one or more NFV security services agents. The NFV security services controller is configured to transmit a security monitoring policy to the NFV security services agents and enforce the security monitoring policy at the NFV security services agents. The NFV security services agents are configured to monitor telemetry data and package at least a portion of the telemetry for transmission to an NFV security monitoring analytics system of the NFV security architecture for security threat analysis. Other embodiments are described and claimed.
115 Citations
30 Claims
-
1. A network functions virtualization (NFV) security services controller of an NFV security architecture for managing security monitoring services of the NFV security architecture, the NFV security controller comprising:
-
a security monitoring policy distribution module to transmit a security monitoring policy, via a secure communication channel, to one or more NFV security services agents distributed in a virtual network function (VNF) infrastructure of the NFV security architecture via an NFV security services provider of a virtual infrastructure manager (VIM) of the NFV security architecture, wherein the security monitoring policy comprises a set of monitoring rules usable by the NFV security services agents to monitor telemetry data of the NFV security architecture and adjust configuration settings of the NFV security services agents; and a security monitoring policy enforcement module to enforce the security monitoring policy transmitted to the one or more security monitoring components of the NFV security architecture. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. One or more computer-readable storage media comprising a plurality of instructions stored thereon that in response to being executed cause a network functions virtualization (NFV) security services controller of the NFV security architecture to:
-
transmit, via a secure communication channel, a security monitoring policy to one or more NFV security services agents distributed in a virtual network function (VNF) infrastructure of the NFV security architecture via an NFV security services provider of a virtual infrastructure manager (VIM) of the NFV security architecture, wherein the security monitoring policy comprises a set of monitoring rules usable by the NFV security services agents to monitor telemetry data of the NFV security architecture and adjust configuration settings of the NFV security services agents; and enforce the security monitoring policy transmitted to the one or more security monitoring components of the NFV security architecture. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
-
20. A method for managing security monitoring services of a network functions virtualization (NFV) security architecture, the method comprising:
-
transmitting, by an NFV security services controller of the NFV security architecture via a secure communication channel, a security monitoring policy to one or more NFV security services agents distributed in a virtual network function (VNF) infrastructure of the NFV security architecture via an NFV security services provider of a virtual infrastructure manager (VIM) of the NFV security architecture, wherein the security monitoring policy comprises a set of monitoring rules usable by the NFV security services agents to monitor telemetry data of the NFV security architecture and adjust configuration settings of the NFV security services agents; and enforcing, by the NFV security services controller, the security monitoring policy transmitted to the one or more security monitoring components of the NFV security architecture. - View Dependent Claims (21, 22, 23, 24, 25)
-
-
26. A network functions virtualization (NFV) security services controller of an NFV security architecture for managing security monitoring services of the NFV security architecture, the NFV security controller comprising:
-
means for transmitting, via a secure communication channel, a security monitoring policy to one or more NFV security services agents distributed in a virtual network function (VNF) infrastructure of the NFV security architecture via an NFV security services provider of a virtual infrastructure manager (VIM) of the NFV security architecture, wherein the security monitoring policy comprises a set of monitoring rules usable by the NFV security services agents to monitor telemetry data of the NFV security architecture and adjust configuration settings of the NFV security services agents; and means for enforcing the security monitoring policy transmitted to the one or more security monitoring components of the NFV security architecture. - View Dependent Claims (27, 28, 29, 30)
-
Specification