SHIELD
Securing against intruders and other threats through a NFV-enabled environment
Total Budget
€ 4.5Μ
A few details
Project Description
SHIELD aims to establish an integrated framework for deploying and managing virtual security infrastructures into ISP and corporate networks.
MNLAB
Role
In SHIELD, NCSRD undertakes the development and adaptation of vNSFs, both monitoring and reacting, based on open-source software and adapt them to suit the requirements and operational specifications of the SHIELD ecosystem. It also contributes to the overall and vNSF architecture definition and testing phase, bringing its expertise from T-NOVA and CHARISMA projects. Scenarios to be implemented by NCSRD will involve the use of emerging technologies such as SDN and NFV to demonstrate how security threats could be addressed in future mobile networks.
Duration
2016/09/01 – 2019/02/28
Consortium
12 partners
Grant agreement
number 700199
virtual network services
Design an integrated framework for the lifecycle management of virtual network services
virtual Network Security Functions
Design and develop a set of virtual Network Security Functions (vNSFs) for in-network threat mitigation
Data Analysis & Remediation Engine
Establish a Data Analysis and Remediation Engine (DARE) for the analysis of Big Data stemming from the vNSFs
NFV Management & Orchestration
Leverage Network Functions Virtualisation (NFV) Management and Orchestration (MANO) for dynamically deploying virtual security appliances in the network
vNSF Store
Ρrepository of available virtual security functions (firewalls, DPIs, content filters etc.) for ISP customers to deploy and protect their infrastructure
What is it about?
Project Description
SHIELD project proposes a universal solution for dynamically establishing and deploying virtual security infrastructures into ISP and corporate networks. SHIELD builds on the huge momentum of Network Functions Virtualisation (NFV), as currently standardised by ETSI, in order to virtualise security appliances into virtual Network Security Functions (vNSFs), to be instantiated within the network infrastructure using NFV technologies and concepts, effectively monitoring and filtering network traffic in a distributed manner.
Logs and metrics from vNSFs are aggregated into an information-driven Data Analysis and Remediation Engine (DARE), which leverages state-of-the-art big data storage and analytics in order to predict specific vulnerabilities and attacks by analysing the network and understanding the adversary possibilities, behaviour and intent.
The SHIELD virtual security infrastructure can either used by the ISP internally for network monitoring and protection, but it can also be offered as-a-service to ISP customers; for this purpose, SHIELD establishes a “vNSF Store”, i.e. a repository of available virtual security functions (firewalls, DPIs, content filters etc.) from which the ISP customers can select the ones which best match their needs and deploy them to protect their infrastructure. This approach promotes openness and interoperability of security functions and offers an affordable, zero-CAPEX security solution for citizens and SMEs. Moreover, SHIELD services can be easily scaled up or down, configured and upgraded according to customers’ needs, as opposed to security solutions based on monolithic hardware.
Inside the mechanics…
Technologies
Here are some of the technologies, platforms, systems, open-source projects, tools, pieces of software, frameworks… that are used :
