IMS: Towards Computability and Dynamicity for Intent-Driven Micro-Segmentation

IMS: Towards Computability and Dynamicity for Intent-Driven Micro-Segmentation

Micro-segmentation (MSG), a pillar of Zero-Trust, provides fine-grained access control for east-west traffic between cloud endpoints (VMs/containers). Admins formulate strict whitelisting MSG policies that allow necessary traffic. However, current MSG systems lack the computability foundation to res...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE transactions on dependable and secure computing 2025-01, Vol.22 (1), p.677-694
Hauptverfasser: Ma, Zixuan, Li, Chen, Zhang, Yuqi, You, Ruibang, Tu, Bibo
Format: Artikel
Sprache:eng
Schlagworte:
Access control
Business
dynamicity processing
intent-driven system
Micro-segmentation
Policies
policy verification
Process control
Prototypes
Security
Segmentation
Surface treatment
Traffic control
zero-trust
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Schreiben Sie den ersten Kommentar!
Bitte loggen Sie sich zuerst ein