|2021-06-20||Work Programme||Version 2.3.3|
|Work Item Reference||Type||STF||Technical Body
(Click to View Full Schedule)
|Cover Date||Standstill||Creation Date|
||0.0.4 Draft||View Standstill Information||2020-01-23|
|Rapporteur||Technical Officer||Harmonised Standard|
|Anne-Marie Praden||Laurent Vreck||No|
Network Functions Virtualisation (NFV) Release 4; Security; Isolation and trust domain specification
Isolation and trust domain
Scope and Field
This work item will define the requirements and solutions for the NFV System to enhance network functions and services isolation between tenants. This includes:
o Analysis of the threat models
o Trust domain separation (multi-tenant NFVI, traffic and resource separation, tenant-dependant resource management and access control..)
o Memory protection and access control (protection against memory introspection, confidentiality of sensitive data and credentials),
o Hypervisor trust partitioning
o The Virtualization Container (e.g. Virtual Machine and OS container) Escape protection (e.g. protection against VNF compromizing its local host OS, taking control of the hypervisor and then gaining access to private and sensitive data of co-resident Virtualization Containers) .
o Associated key management system for all above items.
The WI will take into account the output of GR NFV-EVE018 WI concerning the multi-tenancy.
|Orange, THALES, TELEFONICA S.A., OTD, SPRINT Corporation, BT plc|
|Displaying Item 75 of 79...|
|Any comments or problems with this application? Please let us know...|