System architecture for collaborative security and privacy monitoring in multi-domain networks

The System architecture presented in this paper is developed in DEMONS project of the European FP7 framework project to realize the trustworthy multi-domain network with collaborative and decentralized security and privacy monitoring system. The system architecture so developed comprises of five sub-systems: (i) programmable monitoring nodes called BlockMon nodes providing the monitoring infrastructure data plane, ii) BlockMon Controller, iii) Mitigation Control Point, in charge of providing a unique interface towards mitigation equipments, iv) an Inter-domain Exchange Point devised to provide gateway functionalities (at both control and data plane) from/to external administrative domains, and v) a Workflow Planner and Orchestrator Controller for authorization, brokerage, and run-time control service towards the deployed monitoring and mitigation primitives on the basis of the application needs, operational requirements, and regulatory provisions. The DEMONS system architecture further comprises two external interfaces to the end users, namely i) a Programming and Administrative Interface through which the system and its components are programmed, administered and maintained, and ii) an Application User Interface through which the system is used for monitoring by users in a given domain, plus a number of dedicated interfaces among the internal DEMONS´ sub-systems / components.