This paper introduces a proposal aimed at defining a novel methodology for run-time monitoring of Fog applications which is both policy-driven and app-agnostic. The first feature grants the possibility to define security policies that are enforced at run-time on a single or a set of Fog applications. The latter allows to enforce the security policies independently from the execution environment of the Fog applications (e.g., Virtual Machine, Container, PaaS, ...). The paper also discusses a PoC implementation on Cisco IOx.
展开▼