TY - GEN
T1 - DDoS Mitigation while Preserving QoS
T2 - 10th IEEE International Conference on Network Softwarization, NetSoft 2024
AU - Khozam, Shurok
AU - Blanc, Gregory
AU - Tixeuil, Sebastien
AU - Totel, Eric
N1 - Publisher Copyright:
© 2024 IEEE.
PY - 2024/1/1
Y1 - 2024/1/1
N2 - The deployment of 5G networks has significantly improved connectivity, providing remarkable speed and capacity. These networks rely on Software-Defined Networking (SDN) to enhance control and flexibility. However, this advancement poses critical challenges including expanded attack surface due to network virtualization and the risk of unauthorized access to critical infrastructure. Since traditional cybersecurity methods are inadequate in addressing the dynamic nature of modern cyber attacks, employing artificial intelligence (AI), and deep reinforcement learning (DRL) in particular, was investigated to enhance 5G networks security. This interest arises from the ability of these techniques to dynamically respond and adapt their defense strategies according to encountered situations and real-time threats. Our proposed mitigation system uses a DRL framework, enabling an intelligent agent to dynamically adjust its defense strategies against a range of DDoS attacks, exploiting ICMP, TCP SYN, and UDP, within an SDN environment designed to mirror real-life user behaviors. This approach aims to maintain the network's performance while concurrently mitigating the impact of the real-time attacks, by providing adaptive and automated countermeasures according to the network's situation.
AB - The deployment of 5G networks has significantly improved connectivity, providing remarkable speed and capacity. These networks rely on Software-Defined Networking (SDN) to enhance control and flexibility. However, this advancement poses critical challenges including expanded attack surface due to network virtualization and the risk of unauthorized access to critical infrastructure. Since traditional cybersecurity methods are inadequate in addressing the dynamic nature of modern cyber attacks, employing artificial intelligence (AI), and deep reinforcement learning (DRL) in particular, was investigated to enhance 5G networks security. This interest arises from the ability of these techniques to dynamically respond and adapt their defense strategies according to encountered situations and real-time threats. Our proposed mitigation system uses a DRL framework, enabling an intelligent agent to dynamically adjust its defense strategies against a range of DDoS attacks, exploiting ICMP, TCP SYN, and UDP, within an SDN environment designed to mirror real-life user behaviors. This approach aims to maintain the network's performance while concurrently mitigating the impact of the real-time attacks, by providing adaptive and automated countermeasures according to the network's situation.
KW - Distributed Denial of Service
KW - Quality of Service
KW - Reinforcement Learning
KW - Software-Defined Networking
UR - https://www.scopus.com/pages/publications/85199565736
U2 - 10.1109/NetSoft60951.2024.10588889
DO - 10.1109/NetSoft60951.2024.10588889
M3 - Conference contribution
AN - SCOPUS:85199565736
T3 - 2024 IEEE 10th International Conference on Network Softwarization, NetSoft 2024
SP - 369
EP - 374
BT - 2024 IEEE 10th International Conference on Network Softwarization, NetSoft 2024
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 24 June 2024 through 28 June 2024
ER -