IDEAS home Printed from https://ideas.repec.org/a/gam/jftint/v14y2022i7p201-d852306.html
   My bibliography  Save this article

Misuse Patterns from the Threat of Modification of Non-Control Data in Network Function Virtualization

Author

Listed:
  • Abdulrahman K. Alnaim

    (Department of Management Information Systems, School of Business, King Faisal University, Al Ahsa 31982, Saudi Arabia)

Abstract

Network Function Virtualization (NFV) is a virtual network model, the goal of which is a cost-efficient transition of the hardware infrastructure into a flexible and reliable software platform. However, this transition comes at the cost of more security threats. A key part of this virtualization environment is the hypervisor, which emulates the hardware resources to provide a runtime environment for virtual machines (VMs). The hypervisor is considered a major attack vector and must be secured to ensure network service continuity. The virtualization environment contains critical non-control data where compromise could lead to several misuses, including information leakage and privilege and resource modification. In this paper, we present a misuse pattern for an attack that exploits the security vulnerabilities of the hypervisor to compromise the integrity of non-control data in the NFV environment. Misuse patterns are used to describe how attacks are carried out from the attackers’ perspective. The threat of modification of non-control data can lead to several misuses, and in this paper, we discuss three of them. The defenses to this attack can be incorporated into the Security Reference Architecture (SRA) of the NFV system to prevent these misuses.

Suggested Citation

  • Abdulrahman K. Alnaim, 2022. "Misuse Patterns from the Threat of Modification of Non-Control Data in Network Function Virtualization," Future Internet, MDPI, vol. 14(7), pages 1-17, June.
  • Handle: RePEc:gam:jftint:v:14:y:2022:i:7:p:201-:d:852306
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/1999-5903/14/7/201/pdf
    Download Restriction: no

    File URL: https://www.mdpi.com/1999-5903/14/7/201/
    Download Restriction: no
    ---><---

    References listed on IDEAS

    as
    1. Eduardo B. Fernandez & Nobukazu Yoshioka & Hironori Washizaki & Madiha H. Syed, 2016. "Modeling and Security in Cloud Ecosystems," Future Internet, MDPI, vol. 8(2), pages 1-15, April.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Ludger Goeke & Nazila Gol Mohammadi & Maritta Heisel, 2018. "Context Analysis of Cloud Computing Systems Using a Pattern-Based Approach," Future Internet, MDPI, vol. 10(8), pages 1-27, July.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jftint:v:14:y:2022:i:7:p:201-:d:852306. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.