21th AIAI 2025, 26 - 29 June 2025, Limassol, Cyprus

Network Policy Enforcement in cloud-native environments

Tomas Pedro R., Silva Sofia, Neto Marco, Proença Jorge, Luis Rosa,Cordeiro Luis, Taleb Tarik, Cruz Tiago

Abstract:

  The shift towards cloud-native environments has gained significant momentum, and with it, several security and privacy concerns have arisen. One of them is related to the reliable definition and enforcement of network policies in such scenarios. This paper starts by discussing those concerns, reviewing existing technologies and later, introduces a policy orchestrator. Such a proposal addresses the research gap and the notoriously difficult task of ensuring compliance and compatibility with standards. Indeed, the proposed approach supports XACML and JSON-based requests, ensuring interoperability with established standards while also accommodating cloud-native specificities. This paper presents a proof-of-concept of the policy orchestrator in a real-world scenario, demonstrating the usefulness and feasibility of the proposed approach.  

*** Title, author list and abstract as submitted during Camera-Ready version delivery. Small changes that may have occurred during processing by Springer may not appear in this window.