Mondrian: Comprehensive Inter-domain Network Zoning Architecture

Thu 11Feb2021

Claude Hähni, ETH Zürich

From 12:30 until 13:30

At Zoom:


A central element of designing IT security infrastructures is the logical segmentation of information assets into network zones sharing the same security requirements and policies. As more business ecosystems are migrated to the cloud, additional demands for cybersecurity emerge and make the network-zone operation and management for large corporate networks challenging. In this talk, we introduce the new concept of an inter-domain transit zone that securely bridges physically and logically non-adjacent zones in large-scale information systems, simplifying complex network-zone structures. With interzone translation points, we also ensure communication integrity and confidentiality while providing lightweight security-policy enforcement. A logically centralized network coordinator enables scalable and flexible network management. Our implementation demonstrates that the new architecture merely introduces a few microseconds of additional processing delay in transit.

Join the Zoom meeting at 12:30 on Thursday, February 11th:

Download Event to Calendar