Title :
Network Telemetry Anonymization for Cloud Based Security Analysis - Best Practices
Author_Institution :
Cisco Syst. India Pvt Ltd., Bangalore, India
Abstract :
Availability of network telemetry data aides in identifying security compromises, malicious traffic patterns, malware spread etc. There are varieties of Cloud based security services available for consumers to benefit from but on another hand there is a compelling need for ensuring privacy of sensitive fields before data is shared with any cloud provider. Anonymization techniques based on micro-data or macro-data have challenges in terms of attacks possible, scalability and practicality. In this paper we discuss challenges in privacy-preserving cloudification of network telemetry data. We present practical and scalable techniques for network data anonymization. These techniques ensure the privacy of the sensitive fields while retaining the ability to perform security forensics and analytics. We also provide best practices for ensuring successful data anonymization.
Keywords :
cloud computing; data privacy; digital forensics; telemetry; cloud based security analysis; cloud based security services; cloud provider; macrodata; malicious traffic patterns; malware spread; microdata; network telemetry anonymization; network telemetry data; privacy-preserving cloudification; security analytics; security forensics; Data privacy; Encryption; IP networks; Performance evaluation; Telemetry;
Conference_Titel :
Cloud Computing in Emerging Markets (CCEM), 2014 IEEE International Conference on
Conference_Location :
Bangalore
DOI :
10.1109/CCEM.2014.7015493
