Modern service/hosting models utilize the concept of a multi-tenant infrastructure to share common network services while providing secure logical network segmentation between tenant customers. An on-going problem with network telemetry tools in multi-tenant and shared environments is that often they do not provide data confidentiality between tenants. Presented herein are techniques in which an access policy to telemetry logs can be generated in a multi-tenant environment through the use of role-based policy tokens that are attached to log entries as they are received at a collector.

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.