Upload
dinhtruc
View
229
Download
2
Embed Size (px)
Citation preview
Copyright© 2017, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Wen-Lin Cheng, Ting-Che Chuang, Chien-Wen Yang,
Yueh-Hsien Lin, Min Liu, Chuan Yin
Network Management Laboratory, Chunghwa Telecom Laboratories2017,Sep.
An Integrated Security Monitoring
System for Digital Service Network
Devices
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Outline
• Introduction
• Related Work
• Methodology
• System Implementation
• Conclusion
1/15
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Introduction-Digital Services(1/2)
• New ICT (Information and CommunicationTechnology) services are booming quickly.
• In digital service ecosystem, almost all services arecomposed by multiple micro-services.
• Building composite digital services is morecomplicated for service providers.
2/15
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Introduction-Digital Services(2/2)
3/15
The Multi-Service Nature of Service Delievery
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Introduction-Digital Service Security
• How to ensure digital service security?
– System security
– Network security
4/15
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Network Device Security
• What do we take care?
– Service providers focus on anti-virus, anti-
hacking, service performance.
– Telecom operators focus on stable and robust
network.
• How about Network Device Security?
5/15
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Integrated Security Monitoring System
• The system aggregates all security data
under heterogeneous network
architecture.
• The system present analyzed
information in a single panel.
• The system consists of three building
blocks
– Device log collection architecture
– Global security alarm correlation analysis
– Security event notification6/15
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Related work
• Network Operation Management
– Expert system
– Intelligent Network Fault Diagnosis
– QoS
• Network Security Management
– Packet analysis
– Traffic analysis
7/15
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Methodology(1/3)
8/15
Integrated device security monitoring process
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Methodology(2/3)
9/15
Network device log collection architecture
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Methodology(3/3)
10/15
Security event notification process
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
System Implementation(1/3)
11/15
Log Server Modules
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
System Implementation(2/3)
12/15
Important Monitor items
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
System Implementation(3/3)
13/15
Integrated Monitoring panel
Copyright© 2016, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Conclusion
• Building an Integrated Security
Monitoring System for Digital Service
Network Devices
• To help telecom operators to establish
centralized device security mechanism
for network devices.
14/15
Copyright© 2017, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
Thank You
Copyright© 2017, Telecommunication Laboratories, Chunghwa Telecom All rights reserved.
This work contains confidential, proprietary information and trade secrets of Telecommunication
Laboratories, Chunghwa Telecom . No part of this document may be used, reproduced, displayed,
recited, presented, adapted, distributed, compiled, or transmitted in any form or by any means without
the prior written permission of Telecommunication Laboratories, Chunghwa Telecom.