报告题目： Network Security Function Virtualization: Challenges and Solutions
报告人： Professor Hu Hongxin
报告人单位： Clemson University 美国克莱梅森大学
报告人简介：Dr. Hongxin Hu is an assistant professor in the School of Computing at Clemson University. His research interests centrally focus on the area of network and system security. More specifically, he strives to develop effective solutions to address realistic security issues created by today’s emerging technologies including Network Function Virtualization (NFV), Software-Defined Networking (SDN), Internet of Things (IoT), mobile computing, and cloud computing. He has published over 80-refereed technical papers, many of which appeared in top conferences such as USENIX Security, NDSS, SIGCOMM, ACSAC, ESORICS, SACMAT, ICNP, and INFOCOM, and top journals such as TDSC, TIFS, TISSEC, TKDE, and TPDS. He is the recipient of the Best Paper Award from ACM CODASPY 2014, and the Best Paper Award Honorable Mentions from ACM SACMAT 2016, IEEE ICNP 2015, and ACM SACMAT 2011. One of his papers was recently featured by the IEEE Special Technical Community on Social Networking. His research has been funded by National Science Foundation (NSF), U.S. Department of Transportation (USDOT)，VMware, Amazon, Dell, etc. His research has also received wide press coverage including ACM TechNews, InformationWeek, and NetworkWorld.
报告摘要： 网络功能虚拟化 （NFV） 作为一门新兴的网络技术，可以极大地 提高网络功能部署的灵活性和弹性，但同时也带来了一些新的安全挑战。本次讲座将讨论网络安全功能虚拟化所面临的技术问题和潜在的解决方案。部分研究结果最近发表在NDSS’17 和 SIGCOMM’17.
Abstract:Traditional network security functions, such as firewall and Intrusion Detection System (IDS), are mostly implemented as vendor proprietary appliances or middleboxes, which usually lack a general programming interface and is also characterized by very poor versatility and flexibility. Two emerging networking paradigms, Network Function Virtualization (NFV) and Software-Defined Networking (SDN), have accelerated the development of a new breed of network security functions, virtual Network Security Functions (vNSFs), which are flexible and elastic, and are well-suited for protecting programmable and virtualizable environments. However, to fully take advantage of the benefits of vNSFs, there are great challenges in the management, development, deployment, and execution of vNSFs. In this talk, I will discuss those research challenges and potential solutions for addressing those challenges. Some research results have recently published in NDSS’17 and SIGCOMM’17.