Ȩ > Ç¥ÁØÈ °³¿ä > TTAÀÇ Ç¥ÁØÇöȲ
Ç¥ÁعøÈ£ | TTAK.KO-12.0314-Part9 | ±¸Ç¥ÁعøÈ£ | |
---|---|---|---|
Á¦°³Á¤ÀÏ | 2021-12-08 | ÃÑÆäÀÌÁö | 23 |
ÇѱÛÇ¥Áظí | SDN ±â¹ÝÀÇ ³×Æ®¿öÅ© º¸¾È ±â´ÉÀÇ ÀÎÅÍÆäÀ̽º(I2NSF) ÇÁ·¹ÀÓ¿öÅ© – Á¦9ºÎ: ³×Æ®¿öÅ© º¸¾È ±â´É Àû¿ë ÀÎÅÍÆäÀ̽º | ||
¿µ¹®Ç¥Áظí | Interface to Network Security Functions (I2NSF) Framework Using Software-Defined Networking - Part 9: Network Security Function Application Interface | ||
Çѱ۳»¿ë¿ä¾à | º» Ç¥ÁØÀº IBN ºÐ¼®±â°¡ NSF ¸ð´ÏÅ͸µ µ¥ÀÌÅ͸¦ ºÐ¼®ÇÏ¿© »ý¼ºÇÑ º¸¾È Á¤Ã¥ Àç¼³Á¤ ¹× Çǵå¹é Á¤º¸¸¦ ±â¼úÇϱâ À§ÇÑ Á¤º¸ ¸ðµ¨°ú YANG µ¥ÀÌÅÍ ¸ðµ¨À» Á¤ÀÇÇÑ´Ù. IBN ºÐ¼®±â´Â NSF¿¡ ÀÇÇØ ¹ß°ßµÈ º¸¾È °ø°Ý¿¡ ´ëÇØ º¸¾È Á¤Ã¥ÀÇ °»½Å ¶Ç´Â »ý¼ºÀ» À§ÇÑ º¸¾È Á¤Ã¥ Àç¼³Á¤À» »ý¼ºÇÑ´Ù. ¶ÇÇÑ IBN ºÐ¼®±â´Â NSF¿¡ ´ëÇÑ ½Ã½ºÅÛ ¾Ë¶÷ °°Àº Çǵå¹é Á¤º¸¸¦ »ý¼ºÇÑ´Ù. º¸¾È Á¤Ã¥ Àç¼³Á¤ ¹× Çǵå¹é Á¤º¸´Â NSF À̸§, ¹®Á¦, ÇØ°áÃ¥À¸·Î ±¸¼ºµÈ´Ù. ÀÌ·¯ÇÑ º¸¾È Á¤Ã¥ Àç¼³Á¤ ¹× Çǵå¹é Á¤º¸¸¦ Æ÷ÇÔÇÑ Á¤Ã¥À» IBN ºÐ¼®±â°¡ NSF Àû¿ë ÀÎÅÍÆäÀ̽º¸¦ ÅëÇØ IBN Á¦¾î±â¿¡ Àü´ÞÇÑ´Ù. IBN Á¦¾î±â´Â Àü´Þ ¹ÞÀº º¸¾È Á¤Ã¥ Àç¼³Á¤ ¹× Çǵå¹é Á¤º¸¸¦ °¡Áö°í º¸¾È °ø°Ý¿¡ ´ëÀÀÇϰųª NSFÀÇ ½Ã½ºÅÛ ¸®¼Ò½º Á¶Á¤À» À§ÇÑ ¾×¼ÇÀ» ÃëÇÏ°Ô ÇÑ´Ù. ¶ÇÇÑ º» Ç¥ÁØÀº »ç¿ëÀÚµéÀÌ Àü´Þ ÀÎÅÍÆäÀ̽º¸¦ ÀÌÇØÇÏ´Â °ÍÀ» µ½±â À§ÇÏ¿© À¯½ºÄÉÀ̽º¸¦ ±â¼úÇÑ´Ù. | ||
¿µ¹®³»¿ë¿ä¾à | The standard defines in information model and a YANG data model to describe both security policy reconfiguration and feedback information that are constructed by IBN Analyzer through the analysis of NSF monitoring data. IBN Analyzer constructs security policy reconfiguration to update or generate a security policy about a security attack detected by an NSF. Also, IBN Analyzer constructs feedback information such as system alarms. The security policy reconfiguration and feedback information consist of NSF name, problem, and solution. IBN Analyzer delivers a policy of the security policy reconfiguration and feedback information to IBN Controller. With the policy, IBN Controller performs countermeasure against the security attack or takes an action to adjust the resources of the NSF. This standard also describes use cases to help users understand the Application Interface. | ||
±¹Á¦Ç¥ÁØ | |||
°ü·ÃÆÄÀÏ | TTAK.KO-12.0314-Part9.pdf |