Technologies for scalable security architecture of virtualized networks
First Claim
1. A network functions virtualization (NFV) security services controller of an NFV security architecture for managing security monitoring services of the NFV security architecture, the NFV security controller comprising:
- one or more hardware processors; and
one or more data storage devices having stored therein a plurality of instructions that, when executed by the one or more hardware processors, cause the NFV security services controller to;
transmit a security monitoring policy, via a secure communication channel, to one or more NFV security services agents distributed in a virtual network function (VNF) infrastructure of the NFV security architecture via an NFV security services provider of a virtual infrastructure manager (VIM) of the NFV security architecture, wherein the security monitoring policy comprises a set of monitoring rules usable by the NFV security services agents to monitor telemetry data of the NFV security architecture and adjust configuration settings of the NFV security services agents; and
enforce the security monitoring policy transmitted to the one or more security monitoring components of the NFV security architecture; and
audit telemetry data stored at an audit database in network communication with the NFV security services controller, wherein the telemetry data is timestamped by a secure clock corresponding to the NFV security services agent that transmitted the telemetry data to the audit database, and wherein to audit the telemetry data comprises to (i) verify the telemetry data and (ii) sequence the telemetry data.
1 Assignment
0 Petitions
Accused Products
Abstract
Technologies for performing security monitoring services of a network functions virtualization (NFV) security architecture that includes an NVF security services controller and one or more NFV security services agents. The NFV security services controller is configured to transmit a security monitoring policy to the NFV security services agents and enforce the security monitoring policy at the NFV security services agents. The NFV security services agents are configured to monitor telemetry data and package at least a portion of the telemetry for transmission to an NFV security monitoring analytics system of the NFV security architecture for security threat analysis. Other embodiments are described and claimed.
32 Citations
26 Claims
-
1. A network functions virtualization (NFV) security services controller of an NFV security architecture for managing security monitoring services of the NFV security architecture, the NFV security controller comprising:
-
one or more hardware processors; and one or more data storage devices having stored therein a plurality of instructions that, when executed by the one or more hardware processors, cause the NFV security services controller to; transmit a security monitoring policy, via a secure communication channel, to one or more NFV security services agents distributed in a virtual network function (VNF) infrastructure of the NFV security architecture via an NFV security services provider of a virtual infrastructure manager (VIM) of the NFV security architecture, wherein the security monitoring policy comprises a set of monitoring rules usable by the NFV security services agents to monitor telemetry data of the NFV security architecture and adjust configuration settings of the NFV security services agents; and enforce the security monitoring policy transmitted to the one or more security monitoring components of the NFV security architecture; and audit telemetry data stored at an audit database in network communication with the NFV security services controller, wherein the telemetry data is timestamped by a secure clock corresponding to the NFV security services agent that transmitted the telemetry data to the audit database, and wherein to audit the telemetry data comprises to (i) verify the telemetry data and (ii) sequence the telemetry data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. One or more non-transitory, computer-readable storage media comprising a plurality of instructions stored thereon that in response to being executed cause a network functions virtualization (NFV) security services controller of the NFV security architecture to:
-
transmit, via a secure communication channel, a security monitoring policy to one or more NFV security services agents distributed in a virtual network function (VNF) infrastructure of the NFV security architecture via an NFV security services provider of a virtual infrastructure manager (VIM) of the NFV security architecture, wherein the security monitoring policy comprises a set of monitoring rules usable by the NFV security services agents to monitor telemetry data of the NFV security architecture and adjust configuration settings of the NFV security services agents; enforce the security monitoring policy transmitted to the one or more security monitoring components of the NFV security architecture; and audit telemetry data stored at an audit database in network communication with the NFV security services controller, wherein the telemetry data is timestamped by a secure clock corresponding to the NFV security services agent that transmitted the telemetry data to the audit database, and wherein auditing the telemetry data comprises (i) verifying the telemetry data and (ii) sequencing the telemetry data. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
-
18. A method for managing security monitoring services of a network functions virtualization (NFV) security architecture, the method comprising:
-
transmitting, by an NFV security services controller of the NFV security architecture via a secure communication channel, a security monitoring policy to one or more NFV security services agents distributed in a virtual network function (VNF) infrastructure of the NFV security architecture via an NFV security services provider of a virtual infrastructure manager (VIM) of the NFV security architecture, wherein the security monitoring policy comprises a set of monitoring rules usable by the NFV security services agents to monitor telemetry data of the NFV security architecture and adjust configuration settings of the NFV security services agents; enforcing, by the NFV security services controller, the security monitoring policy transmitted to the one or more security monitoring components of the NFV security architecture; and auditing, by the NFV security services controller, telemetry data stored at an audit database in network communication with the NFV security services controller, wherein the telemetry data is timestamped by a secure clock corresponding to the NFV security services agent that transmitted the telemetry data to the audit database, and wherein auditing the telemetry data comprises (i) verifying the telemetry data and (ii) sequencing the telemetry data. - View Dependent Claims (19, 20, 21, 22)
-
-
23. A network functions virtualization (NFV) security services controller of an NFV security architecture for managing security monitoring services of the NFV security architecture, the NFV security controller comprising:
-
means for transmitting, via a secure communication channel, a security monitoring policy to one or more NFV security services agents distributed in a virtual network function (VNF) infrastructure of the NFV security architecture via an NFV security services provider of a virtual infrastructure manager (VIM) of the NFV security architecture, wherein the security monitoring policy comprises a set of monitoring rules usable by the NFV security services agents to monitor telemetry data of the NFV security architecture and adjust configuration settings of the NFV security services agents; means for enforcing the security monitoring policy transmitted to the one or more security monitoring components of the NFV security architecture; and means for auditing telemetry data stored at an audit database in network communication with the NFV security services controller, wherein the telemetry data is timestamped by a secure clock corresponding to the NFV security services agent that transmitted the telemetry data to the audit database, and wherein auditing the telemetry data comprises (i) verifying the telemetry data and (ii) sequencing the telemetry data. - View Dependent Claims (24, 25, 26)
-
Specification