Summary
Asia-Pacific Network Operations and Management Symposium
2022
Session Number:PS4
Session:
Number:PS4-02
Software Defined Perimeter Monitoring and Blockchain-Based Verification of Policy Mapping.
Mir Muhammad Suleman Sarwar, Javier Jose Diaz Rivera, Khan Talha Ahmed, Afaq Muhammad, Wang-Cheol Song,
pp.-
Publication Date:2022/09/28
Online ISSN:2188-5079
PDF download
Summary:
With the emergence of Zero Trust (ZT) Architecture, industry leaders have been drawn to the technology because of its potential to handle a high level of security threads. The Zero Trust Architecture (ZTA) is paving the path for a security industrial revolution. Zero Trust Architecture (ZTA) paves the path for an industrial revolution in the security domain by eliminating location-based implicant access and focusing on asset, user, and resource security. SDP (Software Defined Perimeter) is a secure overlay network technology that can be used to develop a Zero-Trust framework. SDP is a next-generation network technology that allows network architecture to be hidden from the outside world. It also hides the overlay communication from the underlay network by employing encrypted communications. With encrypted information, detecting abnormal behavior of entities on an overlay network becomes exceedingly difficult. Therefore, an automated system is required. We proposed a method in this paper for understanding the normal behavior of deployed polices by mapping link behavior to the policy. An Apache Spark collects and processes the streaming overlay monitoring data generated by the built-in fabric API in order to do this mapping. It sends extracted metrics to Prometheus for storage, and then uses the data for machine learning training and prediction. The cluster-id of the link that it belongs to is predicted by the models, and the cluster-ids are mapped onto the policies. Un-mapped policies are notified to the SDP controller for additional action, such as defining new policy behavior or marking uncertain policies.