Autonomic protection of multi-tenant 5G mobile networks against UDP flooding DDoS attacks

Mamolar Ana Serrano; Salva-Garcia Pablo; Chirivella-Perez Enrique; Pervez Zeeshan; Calero Jose M. Alcaraz; Wang Qi

首页> 外文期刊>Journal of network and computer applications >Autonomic protection of multi-tenant 5G mobile networks against UDP flooding DDoS attacks

【24h】

Autonomic protection of multi-tenant 5G mobile networks against UDP flooding DDoS attacks

机译：自主保护多租户5G移动网络免受UDP泛洪DDoS攻击

获取原文

获取原文并翻译 | 示例

获取外文期刊封面封底 >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

There is a lack of effective security solutions that autonomously, without any human intervention, detect and mitigate DDoS cyber-attacks. The lack is exacerbated when the network to be protected is a 5G mobile network. 5G networks push multi-tenancy to the edge of the network. Both the 5G user mobility and multi-tenancy are challenges to be addressed by current security solutions. These challenges lead to an insufficient protection of 5G users, tenants and infrastructures. This research proposes a novel autonomic security system, including the design, implementation and empirical validation to demonstrate the efficient protection of the network against Distributed Denial of Service (DDoS) attacks by applying countermeasures decided on and taken by an autonomic system, instead of a human. The self-management architecture provides support for all the different phases involved in a DDoS attack, from the detection of an attack to its final mitigation, through making the appropriate autonomous decisions and enforcing actions. Empirical experiments have been performed to protect a 5G multi-tenant infrastructure against a User Datagram Protocol (UDP) flooding attack, as an example of an attack to validate the design and prototype of the proposed architecture. Scalability results show self-protection against DDoS attacks, without human intervention, in around one second for an attack of 256 simultaneous attackers with 100 Mbps bandwidth per attacker. Furthermore, results demonstrate the proposed approach is flow-, user- and tenant-aware, which allows applying different protection strategies within the infrastructure.

机译：缺乏有效的安全解决方案，这些解决方案无法在没有任何人工干预的情况下自动检测并缓解DDoS网络攻击。当要保护的网络是5G移动网络时，这种缺乏加剧了。 5G网络将多租户推向了网络边缘。 5G用户移动性和多租户都是当前安全解决方案要解决的挑战。这些挑战导致对5G用户，租户和基础设施的保护不足。这项研究提出了一种新颖的自主安全系统，包括设计，实现和经验验证，以通过应用自主系统决定而非采取的对策来论证网络对分布式拒绝服务（DDoS）攻击的有效保护。。自我管理体系结构为DDoS攻击所涉及的所有不同阶段提供支持，从检测到攻击到最终缓解，直到做出适当的自主决策和执行动作。为了保护5G多租户基础架构免受用户数据报协议（UDP）泛洪攻击的影响，已进行了经验性实验，以此作为验证所提出体系结构的设计和原型的攻击的一个示例。可伸缩性结果表明，对于256个同时存在的攻击者的攻击（每个攻击者100 Mbps的带宽），无需人为干预即可自我防御DDoS攻击。此外，结果表明，所提出的方法具有流程，用户和租户感知能力，可以在基础架构中应用不同的保护策略。

著录项

来源
《Journal of network and computer applications》 |2019年第11期|102416.1-102416.12|共12页
作者
Mamolar Ana Serrano; Salva-Garcia Pablo; Chirivella-Perez Enrique; Pervez Zeeshan; Calero Jose M. Alcaraz; Wang Qi;
展开▼
作者单位

Univ West Scotland H2020 5G PPP Phase 1 SELFNET Project Glasgow Lanark Scotland;

Univ West Scotland H2020 5G PPP Phase 2 SELFNET Project Glasgow Lanark Scotland;

Univ West Scotland Glasgow Lanark Scotland;

展开▼
收录信息美国《科学引文索引》(SCI);美国《工程索引》(EI);
原文格式 PDF
正文语种 eng
中图分类
关键词
Self-managed networks; Autonomic control loop; 5G network; DDoS attack; Multi-tenancy; Self-protection;

机译：自我管理的网络;自主控制回路;5G网络;DDoS攻击;多租户;自我保护;

相似文献

外文文献
中文文献
专利

1. Autonomic protection of multi-tenant 5G mobile networks against UDP flooding DDoS attacks [J] . Mamolar Ana Serrano, Salva-Garcia Pablo, Chirivella-Perez Enrique, Journal of network and computer applications . 2019,第Nova期

机译：自主保护多租户5G移动网络免受UDP泛洪DDoS攻击
2. Towards the transversal detection of DDoS network attacks in 5G multi-tenant overlay networks [J] . Mamolar Ana Serrano, Pervez Zeeshan, Calero Jose M. Alcaraz, Computers & Security . 2018,第NOVa期

机译：面向5G多租户覆盖网络中DDoS网络攻击的横向检测
3. ColShield : an effective and collaborative protection shield for the detection and prevention of collaborative flooding of DDoS attacks in wireless mesh networks [J] . I Diana Jeba Jingle, Elijah Blessing Rajsingh Human-centric Computing and Information Sciences . 2014,第1期

机译：ColShield：一种有效的协作保护盾，用于检测和预防无线网状网络中DDoS攻击的协作泛洪
4. Towards the Detection of Mobile DDoS Attacks in 5G Multi-Tenant Networks [C] . Ana Serrano Mamolar, Zeeshan Pervez, Qi Wang, European Conference on Networks and Communications . 2019

机译：在5G多租户网络中检测移动DDoS攻击
5. Optimizing Total Cost of Ownership (TCO) for 5G Multi-Tenant Mobile BackHaul (MBH) Optical Transport Networks =Optimisation du co?t total de possession (TCO) des réseaux de transport optiques multi-clients pour les réseaux mobiles 5G [D] . Haddaji, Nassim . 2019

机译：优化5G多站点移动回程（MBH）光传输网络的总所有权（TCO）= 5G移动网络的总选项（TCO）多客户光传输网络的优化
6. Countering DDoS Attacks in SIP Based VoIP Networks Using Recurrent Neural Networks [O] . Waleed Nazih, Yasser Hifny, Wail S. Elkilani, 2020

机译：使用经常性神经网络对基于SIP的VoIP网络进行反击DDOS攻击
7. Towards the Detection of Mobile DDoS Attacks in 5G Multi-Tenant Networks [O] . Ana Serrano Mamolar, Zeeshan Pervez, Qi Wang, 2019

机译：在5G多租户网络中检测到移动DDOS攻击

Autonomic protection of multi-tenant 5G mobile networks against UDP flooding DDoS attacks

摘要

著录项

相似文献

相关主题

期刊订阅