Badre Bousalem, Vinicius F. Silva, R. Langar, Sylvain Cherrier
{"title":"5G及以后移动网络中基于深度学习的DDoS攻击检测和缓解方法","authors":"Badre Bousalem, Vinicius F. Silva, R. Langar, Sylvain Cherrier","doi":"10.1109/NetSoft54395.2022.9844053","DOIUrl":null,"url":null,"abstract":"In this demo, we present a 5G prototype for attacks detection and mitigation in sliced networks leveraging Machine Learning (ML). Our prototype, based on OpenAirInterface, allows creating network slices on demand and managing physical resources dynamically according to the users’ behavior, while considering the inputs from a northbound Software Defined Network (SDN) application. We focus here on Distributed Denial of Service (DDoS) attacks, where one or multiple malicious users generate attacks on the 5G Core Network. Based on our developed ML module, we show that our prototype is able to detect such attacks, then automatically creates a sinkhole-type slice with a small portion of physical resources, and isolates the malicious users within this slice to mitigate the attackers’ action. We demonstrate the effectiveness of our approach by showing the decrease in the network throughput for the malicious users by a factor of 15, while maintaining a high network throughput for benign users.","PeriodicalId":125799,"journal":{"name":"2022 IEEE 8th International Conference on Network Softwarization (NetSoft)","volume":"55 9 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-06-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Deep Learning-based Approach for DDoS Attacks Detection and Mitigation in 5G and Beyond Mobile Networks\",\"authors\":\"Badre Bousalem, Vinicius F. Silva, R. Langar, Sylvain Cherrier\",\"doi\":\"10.1109/NetSoft54395.2022.9844053\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this demo, we present a 5G prototype for attacks detection and mitigation in sliced networks leveraging Machine Learning (ML). Our prototype, based on OpenAirInterface, allows creating network slices on demand and managing physical resources dynamically according to the users’ behavior, while considering the inputs from a northbound Software Defined Network (SDN) application. We focus here on Distributed Denial of Service (DDoS) attacks, where one or multiple malicious users generate attacks on the 5G Core Network. Based on our developed ML module, we show that our prototype is able to detect such attacks, then automatically creates a sinkhole-type slice with a small portion of physical resources, and isolates the malicious users within this slice to mitigate the attackers’ action. We demonstrate the effectiveness of our approach by showing the decrease in the network throughput for the malicious users by a factor of 15, while maintaining a high network throughput for benign users.\",\"PeriodicalId\":125799,\"journal\":{\"name\":\"2022 IEEE 8th International Conference on Network Softwarization (NetSoft)\",\"volume\":\"55 9 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-06-27\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 IEEE 8th International Conference on Network Softwarization (NetSoft)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/NetSoft54395.2022.9844053\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE 8th International Conference on Network Softwarization (NetSoft)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/NetSoft54395.2022.9844053","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Deep Learning-based Approach for DDoS Attacks Detection and Mitigation in 5G and Beyond Mobile Networks
In this demo, we present a 5G prototype for attacks detection and mitigation in sliced networks leveraging Machine Learning (ML). Our prototype, based on OpenAirInterface, allows creating network slices on demand and managing physical resources dynamically according to the users’ behavior, while considering the inputs from a northbound Software Defined Network (SDN) application. We focus here on Distributed Denial of Service (DDoS) attacks, where one or multiple malicious users generate attacks on the 5G Core Network. Based on our developed ML module, we show that our prototype is able to detect such attacks, then automatically creates a sinkhole-type slice with a small portion of physical resources, and isolates the malicious users within this slice to mitigate the attackers’ action. We demonstrate the effectiveness of our approach by showing the decrease in the network throughput for the malicious users by a factor of 15, while maintaining a high network throughput for benign users.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
