CAREER: Secure and Trustworthy Intent-Based Networking
职业:安全且值得信赖的基于意图的网络
基本信息
- 批准号:2339882
- 负责人:
- 金额:$ 62.16万
- 依托单位:
- 依托单位国家:美国
- 项目类别:Continuing Grant
- 财政年份:2024
- 资助国家:美国
- 起止时间:2024-03-01 至 2029-02-28
- 项目状态:未结题
- 来源:
- 关键词:
项目摘要
Intent-based networking (IBN) is poised to be a crucial element in future computer networks over the next decade. Unlike traditional network management, IBN allows administrators to express their goals in high-level natural language, focusing on 'what' they want the network to achieve rather than 'how' it should be configured. This approach simplifies network management in various environments such as cloud computing data centers, enterprises, and mobile networks. IBN also holds potential for enhancing network security by reducing human errors and responding swiftly to emerging threats. However, there has been little attention given to the unique security challenges posed by IBN for network vendors, administrators, tenants, and users. This project seeks to bridge that gap by addressing IBN's security and trust aspects. The project's novelties are designing a secure and trustworthy IBN architecture, identifying vulnerabilities in current designs, defending against operational attacks, and enhancing resilience against emerging threats. The project's broader significance and importance are in influencing real-world designs, standardization efforts, and industry practices to create a safer and more resilient digital infrastructure for society.The project aims to embed security considerations into the foundational principles of IBN, design a secure reference architecture, and explore IBN's interactions with other network components. The research team addresses these goals in three central and interdependent research thrusts. The first thrust focuses on securely fulfilling network intents, including designing formal models, identifying security-related race conditions, and addressing side-channel attack vectors. The second thrust ensures the secure fulfillment of network intents through scalable network provenance collection for generating access control policies and maintaining overall decision-making integrity. The third thrust involves integrating secure IBN into the broader network infrastructure, addressing cross-plane vulnerabilities, enforcing correct cross-plane functionality, and enhancing reasoning capabilities through root cause analysis. The research team plans to share project results by enhancing existing open-source IBN implementations and creating new tools for use by other researchers. Additionally, the outcomes are incorporated into networking and security courses for both graduate and undergraduate students.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.
基于意图的网络(IBN)将成为未来十年计算机网络的关键元素。与传统的网络管理不同,IBN允许管理员用高级自然语言表达他们的目标,专注于他们希望网络实现的“什么”,而不是“如何”配置。这种方法简化了各种环境中的网络管理,例如云计算数据中心、企业和移动的网络。IBN还具有通过减少人为错误和快速响应新出现的威胁来增强网络安全的潜力。然而,IBN给网络供应商、管理员、租户和用户带来的独特安全挑战却很少受到关注。该项目旨在通过解决IBN的安全和信任问题来弥合这一差距。该项目的创新之处在于设计一个安全可靠的IBN架构,识别当前设计中的漏洞,防御操作攻击,并增强对新兴威胁的抵御能力。该项目的更广泛意义和重要性在于影响现实世界的设计、标准化工作和行业实践,为社会创建更安全、更有弹性的数字基础设施。该项目旨在将安全考虑嵌入IBN的基本原则,设计安全的参考架构,并探索IBN与其他网络组件的交互。研究小组在三个中心和相互依存的研究重点解决这些目标。第一个重点是安全地实现网络意图,包括设计形式化模型,识别与安全相关的竞争条件,以及解决侧信道攻击向量。第二个重点是通过可扩展的网络起源收集来确保网络意图的安全实现,以生成访问控制策略并维护整体决策的完整性。第三个重点是将安全IBN集成到更广泛的网络基础设施中,解决跨平面漏洞,实施正确的跨平面功能,并通过根本原因分析增强推理能力。研究团队计划通过增强现有的开源IBN实现和创建新的工具供其他研究人员使用来分享项目成果。此外,研究生和本科生的网络和安全课程中也包含了这些成果。该奖项反映了NSF的法定使命,并通过使用基金会的知识价值和更广泛的影响审查标准进行评估,被认为值得支持。
项目成果
期刊论文数量(0)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)
数据更新时间:{{ journalArticles.updateTime }}
{{
item.title }}
{{ item.translation_title }}
- DOI:
{{ item.doi }} - 发表时间:
{{ item.publish_year }} - 期刊:
- 影响因子:{{ item.factor }}
- 作者:
{{ item.authors }} - 通讯作者:
{{ item.author }}
数据更新时间:{{ journalArticles.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ monograph.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ sciAawards.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ conferencePapers.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ patent.updateTime }}
Benjamin Ujcich其他文献
Benjamin Ujcich的其他文献
{{
item.title }}
{{ item.translation_title }}
- DOI:
{{ item.doi }} - 发表时间:
{{ item.publish_year }} - 期刊:
- 影响因子:{{ item.factor }}
- 作者:
{{ item.authors }} - 通讯作者:
{{ item.author }}
{{ truncateString('Benjamin Ujcich', 18)}}的其他基金
NeTS: Medium: Collaborative Research: Diagnosing Datacenter Networks with Quantitative Provenance
NeTS:媒介:协作研究:通过定量来源诊断数据中心网络
- 批准号:
1704189 - 财政年份:2017
- 资助金额:
$ 62.16万 - 项目类别:
Continuing Grant
相似海外基金
Collaborative Research: Conference: 2024 Aspiring PIs in Secure and Trustworthy Cyberspace
协作研究:会议:2024 年安全可信网络空间中的有抱负的 PI
- 批准号:
2404952 - 财政年份:2024
- 资助金额:
$ 62.16万 - 项目类别:
Standard Grant
REU Site: Embracing Blockchain for a Secure and Trustworthy Tomorrow
REU 网站:拥抱区块链,打造安全可信的明天
- 批准号:
2349042 - 财政年份:2024
- 资助金额:
$ 62.16万 - 项目类别:
Standard Grant
Collaborative Research: Conference: 2024 Aspiring PIs in Secure and Trustworthy Cyberspace
协作研究:会议:2024 年安全可信网络空间中的有抱负的 PI
- 批准号:
2404950 - 财政年份:2024
- 资助金额:
$ 62.16万 - 项目类别:
Standard Grant
Collaborative Research: Conference: 2024 Aspiring PIs in Secure and Trustworthy Cyberspace
协作研究:会议:2024 年安全可信网络空间中的有抱负的 PI
- 批准号:
2404951 - 财政年份:2024
- 资助金额:
$ 62.16万 - 项目类别:
Standard Grant
Conference: SaTC: NSF Secure & Trustworthy Cyberspace 2024 PI Meeting Logistics Management
会议:SaTC:NSF 安全
- 批准号:
2420955 - 财政年份:2024
- 资助金额:
$ 62.16万 - 项目类别:
Standard Grant
Collaborative Research: SaTC: CORE: Small: Towards Secure and Trustworthy Tree Models
协作研究:SaTC:核心:小型:迈向安全可信的树模型
- 批准号:
2413046 - 财政年份:2024
- 资助金额:
$ 62.16万 - 项目类别:
Standard Grant
Collaborative Research: SaTC: CORE: Small: Towards Secure and Trustworthy Tree Models
协作研究:SaTC:核心:小型:迈向安全可信的树模型
- 批准号:
2247619 - 财政年份:2023
- 资助金额:
$ 62.16万 - 项目类别:
Standard Grant
EAGER: SaTC: Sweaty Digits: Bridging Chemistry and AI-Empowered Imaging for Secure and Trustworthy Human Identity Verification
EAGER:SaTC:汗水数字:桥接化学和人工智能成像,实现安全可信的人类身份验证
- 批准号:
2330240 - 财政年份:2023
- 资助金额:
$ 62.16万 - 项目类别:
Standard Grant
Collaborative Research: SaTC: CORE: Small: Towards Secure and Trustworthy Tree Models
协作研究:SaTC:核心:小型:迈向安全可信的树模型
- 批准号:
2247620 - 财政年份:2023
- 资助金额:
$ 62.16万 - 项目类别:
Standard Grant
Travel: NSF Student Travel Grant for 2023 IEEE Conference on Secure and Trustworthy Machine Learning (IEEE SaTML)
旅行:2023 年 IEEE 安全可信机器学习会议 (IEEE SaTML) 的 NSF 学生旅行补助金
- 批准号:
2317300 - 财政年份:2023
- 资助金额:
$ 62.16万 - 项目类别:
Standard Grant