Security and 5G: Attack mitigation using Reinforcement Learning in SDN networks

Jose Alvaro Fernandez-Carrasco, Lander Segurola-Gil, Francesco Zola, Raul Orduna Urrutia
{"title":"Security and 5G: Attack mitigation using Reinforcement Learning in SDN networks","authors":"Jose Alvaro Fernandez-Carrasco, Lander Segurola-Gil, Francesco Zola, Raul Orduna Urrutia","doi":"10.1109/FNWF55208.2022.00114","DOIUrl":null,"url":null,"abstract":"5G ecosystem is shaping the future of communication networks enabling innovation and digital transformation not only for individual users but also for companies, industries, and communities. In this scenario, technologies such as Software Defined Networking (SDN) represent a solution for telecommunications providers to create agile, scalable, efficient platforms capable of meeting the requirements in the 5G ecosystem. However, as network environments and systems become increasingly complex, both in terms of size and dynamic behavior, the number of vulnerabilities in them can be very high. In addition, hackers are continuously improving intrusion methods, which are becoming more difficult to detect. For this reason, in this study, we deploy a system based on a Reinforcement Learning (RL) agent capable of applying different countermeasures to defend a network against intrusion and DDoS attacks using SDN. The approach is drawn like a serious game in which a defender and an attacker carry out actions based on the observations they get from the environment, i.e., network current status. In this study, defenders and attackers are trained using the Deep Q-Learning (DQN) algorithm with some variations, like Prioritized Replay, Dueling, and Double DQN, comparing their results in order to get the best strategy for attack mitigation. The results of this paper show that RL algorithms can be successfully used to create more versatile agents able of interpreting and adapting themselves to different situations and so run the best countermeasure to protect the network. According to the results, it is also shown that the Complete strategy, which includes the three DQN variations analyzed, is the one that allows obtaining agents with the best decision making to respond to attacks.","PeriodicalId":300165,"journal":{"name":"2022 IEEE Future Networks World Forum (FNWF)","volume":"3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE Future Networks World Forum (FNWF)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/FNWF55208.2022.00114","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 1

Abstract

5G ecosystem is shaping the future of communication networks enabling innovation and digital transformation not only for individual users but also for companies, industries, and communities. In this scenario, technologies such as Software Defined Networking (SDN) represent a solution for telecommunications providers to create agile, scalable, efficient platforms capable of meeting the requirements in the 5G ecosystem. However, as network environments and systems become increasingly complex, both in terms of size and dynamic behavior, the number of vulnerabilities in them can be very high. In addition, hackers are continuously improving intrusion methods, which are becoming more difficult to detect. For this reason, in this study, we deploy a system based on a Reinforcement Learning (RL) agent capable of applying different countermeasures to defend a network against intrusion and DDoS attacks using SDN. The approach is drawn like a serious game in which a defender and an attacker carry out actions based on the observations they get from the environment, i.e., network current status. In this study, defenders and attackers are trained using the Deep Q-Learning (DQN) algorithm with some variations, like Prioritized Replay, Dueling, and Double DQN, comparing their results in order to get the best strategy for attack mitigation. The results of this paper show that RL algorithms can be successfully used to create more versatile agents able of interpreting and adapting themselves to different situations and so run the best countermeasure to protect the network. According to the results, it is also shown that the Complete strategy, which includes the three DQN variations analyzed, is the one that allows obtaining agents with the best decision making to respond to attacks.
安全性与5G:在SDN网络中使用强化学习缓解攻击
5G生态系统正在塑造通信网络的未来,不仅为个人用户,也为公司、行业和社区实现创新和数字化转型。在这种情况下,软件定义网络(SDN)等技术代表了电信提供商创建敏捷、可扩展、高效的平台的解决方案,能够满足5G生态系统的需求。然而,随着网络环境和系统在规模和动态行为方面变得越来越复杂,其中的漏洞数量可能非常高。此外,黑客也在不断改进入侵手段,这些手段越来越难以被发现。因此,在本研究中,我们部署了一个基于强化学习(RL)代理的系统,该代理能够应用不同的对策来保护网络免受入侵和使用SDN的DDoS攻击。这种方法就像一个严肃的游戏,其中防御者和攻击者根据他们从环境中获得的观察结果(即网络当前状态)执行行动。在这项研究中,防御者和攻击者使用深度Q-Learning (DQN)算法进行训练,其中包括一些变体,如优先回放、决斗和双DQN,比较他们的结果,以获得缓解攻击的最佳策略。本文的结果表明,强化学习算法可以成功地用于创建更多功能的智能体,这些智能体能够解释和适应不同的情况,从而运行最佳的对策来保护网络。结果还表明,包含所分析的三种DQN变化的Complete策略是允许获得具有最佳决策的代理来响应攻击的策略。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
自引率
0.00%
发文量
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信