Standard

ETSI GS NFV-SEC 026

Publisert
For bestilling og priser av dette produktet ta kontakt med salg@standard.no

Omfang

The present document defines the requirements and solutions for the NFV System to enhance network functions and services isolation between tenants. For this aim, the present document includes in particular: • Analysis of the threat models. • Trust domain separation (multi-tenant NFVI, traffic and resource separation, tenant-dependant resource management and access control). • Memory protection and access control (protection against memory introspection, confidentiality of sensitive data and credentials). • Hypervisor trust partitioning. • The Virtualization Container (e.g. Virtual Machine and OS container) Escape protection (e.g. protection against VNF compromising its local host OS, taking control of the hypervisor and then gaining access to private and sensitive data of co-resident Virtualization Containers). • Associated key management system for all above items.

Dokumentinformasjon

  • Standard fra ETSI_AC
  • Publisert:
  • Versjon: 0
  • Varetype: IS
  • Tilleggsinformasjon
  • V5.1.1