Network Policy Enforcement in Cloud-Native Environments

Network Policy Enforcement in Cloud-Native Environments

연구 분야: Networking

학회: IFIP International Conference on Artificial Intelligence Applications and Innovations

The shift towards cloud-native environments has gained significant momentum, and with it, several security and privacy concerns have arisen. One of them is related to the reliable definition and enforcement of network policies in such scenarios. This paper starts by discussing those concerns, reviewing existing technologies and later, introduces a policy orchestrator. Such a proposal addresses the research gap and the notoriously difficult task of ensuring compliance and compatibility with standards. Indeed, the proposed approach supports XACML and JSON-based requests, ensuring interoperability with established standards while also accommodating cloud-native specificities. This paper presents a proof-of-concept of the policy orchestrator in a real-world scenario, demonstrating the usefulness and feasibility of the proposed approach.