Results 81 to 90 of about 605 (159)
Trade-Offs in Kubernetes Security and Energy Consumption
Urban ScienceAs the threat landscape advances and pressure to reduce the energy footprint grows, it is crucial to understand how security mechanisms affect the power consumption of cloud-native platforms.
Ioannis Dermentzis +2 more
doaj +1 more source
Applied SciencesWith the widespread adoption of Wi-Fi 7 in campus networks, high-density access and large-scale research data transmission challenge traditional congestion control algorithms. TCP-bottleneck bandwidth and round-trip propagation time (BBR) lacks deep link
Zhaolu Li, Ning Xu, Xiaoli Zhang
doaj +1 more source
Leveraging eBPF for programmable network functions with IPv6 segment routing
, 2018 With the advent of Software Defined Networks (SDN), Network Function Virtualisation (NFV) or Service Function Chaining (SFC), operators expect networks to support flexible services beyond the mere forwarding of packets.
Xhonneux, Mathieu +3 more
core +1 more source
IEEE AccessNetwork Function Virtualization (NFV) offers flexibility but poses a critical challenge in multi-tenant environments: ensuring fairness (resource usage limits) and system security (memory/packet isolation) for each tenant.
Soki Koizumi +3 more
doaj +1 more source
Guangtongxin yanjiu, 2021 极化码是世界上唯一被证明香农门限可达的编码方案。由于连续消除(SC)译码的串行特性导致时延很高,于是置信传播(BP)译码因其具有更高的吞吐量而受到了更多关注。由于BP译码性能不如SC译码,于是将比特翻转(BF)译码应用于BP中。针对当前BP BF(BPF)译码中出现的翻转集构建不准确的问题,文章提出了一种新的误码率BPF译码算法用于构建翻转集,并提出了粗翻转集和精翻转集的概念。文章通过方差能够体现数据稳定性的特点构建了粗翻转集,再通过误码率的差值大小来缩小翻转集的范围,即精翻转集。研究结果表明 ...
王华华 +4 more
doaj
Assurance of eBPF security with the eBPF verifier
The Linux eBPF subsystem is a framework that enables running custom programs inside of the kernel. It allows users to add functionality to the kernel, securing the programs with a verifier to the kernel.
Kuoppala, Tobias
core
Monitoring 5G Core Networks Vulnerabilities With eBPF
The current design of 5G Core Network (5G CN) adopts a cloud-native service-based architecture, where Network Functions (NFs) are exposed as services that can be dynamically composed and managed to achieve high flexibility.
Foschini, Luca +3 more
core +1 more source
bpftime: userspace eBPF Runtime for Uprobe, Syscall and Kernel-User Interactions
, 2023 In kernel-centric operations, the uprobe component of eBPF frequently encounters performance bottlenecks, largely attributed to the overheads borne by context switches.
Zheng, Yusheng +5 more
core
From Container to Cluster: Chained Escape Attacks in Kubernetes and Orchestration Platforms
IEEE AccessContainer virtualization offers a lightweight and agile alternative to traditional virtual machines, yet its reliance on a shared host kernel creates a fundamentally weaker isolation boundary. This architectural choice exposes systems to container escape
Jia-Ning Luo +2 more
doaj +1 more source
A three-tier microsegmentation framework for enterprise networks under Zero Trust Architecture
Alexandria Engineering JournalTraditional perimeter-based security models are increasingly inadequate for modern enterprise environments, often leading to “security silos” where inconsistent policies across infrastructure layers facilitate lateral movement by attackers.
Hari N.N. +5 more
doaj +1 more source