公开(公告)号：US11558353B2

公开(公告)日：2023-01-17

申请号：US16963946

申请日：2018-02-06

Applicant: Nokia Technologies Oy

Inventor： Zhiyuan Hu ,  Jing Ping ,  Stephane Mahieu ,  Yueming Yin

IPC: H04L29/06 ,  H04L9/40

Abstract: Embodiments of the present disclosure relate to a method, apparatus, and computer readable medium for providing a security service for a data center. According to the method, a packet terminating at or originating from the data center is received. At least one label is determined for the packet, each label indicating a security requirement for the packet. Based on the at least one label, a security service chain is selected for the packet, the security service chain including an ordered set of security functions deployed in the data center and to be applied to the packet. The packet is transmitted to the selected security service chain in association with the at least one label, the packet being processed by the ordered set of security functions in the security service chain.

公开(公告)号：US11290490B2

公开(公告)日：2022-03-29

申请号：US16340793

申请日：2016-10-12

Applicant: Nokia Technologies Oy

Inventor： Manfred Schaefer ,  Iris Adam ,  Stephane Mahieu ,  Jing Ping

IPC: H04L29/06 ,  G06F9/50

Abstract: Cloud service security management in cloud computer environment uses a first computer cloud entity with first security capabilities and under security management coordinated by a first security management service point in compliance with predefined first security requirements. Security management of a second computer cloud entity is coordinated by a second security management service point in compliance with predefined second security requirements. In the managing of the security of the cloud service in the cloud computer environment: a trusted relationship is established between the first and second security management service points, general security requirements for the cloud service are obtained; and a first security policy is defined for the first security management service point, based on the general security requirements for the cloud service, the first security capabilities and the first security requirements, for the running of the cloud service by the first computer cloud entity.

公开(公告)号：US20200344267A1

公开(公告)日：2020-10-29

申请号：US16764871

申请日：2017-11-20

Applicant: Nokia Technologies Oy

Inventor： Iris Adam ,  Jing Ping ,  Stephane Mahieu

IPC: H04L29/06 ,  H04L29/08 ,  G06F21/62 ,  G06F21/57

Abstract: An apparatus for security management based on event correlation in a distributed multi-layered cloud environment is disclosed, wherein the distributed multi-layered cloud environment comprises at least one first layer cloud service provider, and at least one second layer cloud service provider as a tenant of the first layer cloud service provider, and the apparatus is installed at least on one cloud service provider of the first layer cloud service provider and the second layer cloud service provider, the apparatus comprising: a central processing module configured to: provide correlation as a Service (CORRaaS) to a plurality of tenants as virtualized security appliances or virtualized security functions for the plurality of tenants's lices, generate a second interface for allowing the plurality of tenants to configure the correlation as a Service (CORRaaS), and correlate and process security events from security functions in the plurality of tenants'slices to form processed security event data, and to detect or predict attacks or anomalies or incompliance with security requirements; and a third interface for transferring the processed security event data and/or log data and/or raw data to the plurality of tenants'security management systems and/or to a plurality of cloud service providers'security management systems; and a fourth interface towards a cloud manager of the cloud service provider for causing the cloud manager to mitigate the detected or predicted attacks or anomalies or incompliance with security requirements. A corresponding system and method for security management based on event correlation in a distributed multi-layered cloud environment, as well as a computer readable medium, are also provided.