The aim of the project SarDiNe is to fully exploit the advantages of virtualized network functions in terms of efficiency and flexibility while ensuring network and IT security.
In traditional networks, basic physical security is achieved through the physical separation of components, for example, by the separation of data and data streams. This level of security must be effectively modeled in virtualization concepts through software components. In the SarDiNe project, two different concepts ("Software Defined Networking" (SDN) and "Network Function Virtualization" (NFV)) are combined and additional aspects of IT and network security are taken into account.
In the technical implementation, for example, an additional level of manipulation-resistant control information for data streams is being developed in order to be able to offer the functionalities of a firewall as network-internal service.
In this way, various levels of security appropriate to the application can be offered within a virtualized system environment. As a result, an optimum of necessary security and available resources is achieved and the administrative burden is reduced.