A4 Artikkeli konferenssijulkaisussa
Reinforcement Learning for Attack Mitigation in SDN-enabled Networks (2020)
Zolotukhin, M., Kumar, S., & Hämäläinen, T. (2020). Reinforcement Learning for Attack Mitigation in SDN-enabled Networks. In F. De Turck, P. Chemouil, T. Wauters, M. Faten Zhani, W. Cerroni, R. Pasquini, & Z. Zhu (Eds.), NetSoft 2020 : Proceedings of the 2020 IEEE Conference on Network Softwarization. Bridging the Gap Between
AI and Network Softwarization (pp. 282-286). IEEE. https://doi.org/10.1109/NetSoft48620.2020.9165383
JYU-tekijät tai -toimittajat
Julkaisun tiedot
Julkaisun kaikki tekijät tai toimittajat: Zolotukhin, Mikhail; Kumar, Sanjay; Hämäläinen, Timo
Emojulkaisu: NetSoft 2020 : Proceedings of the 2020 IEEE Conference on Network Softwarization. Bridging the Gap Between
AI and Network Softwarization
Emojulkaisun toimittajat: De Turck, Filip; Chemouil, Prosper; Wauters, Tim; Faten Zhani, Mohamed; Cerroni, Walter; Pasquini, Rafael; Zhu, Zuqing
Konferenssi:
- IEEE Conference on Network Softwarization
Konferenssin paikka ja aika: Virtual conference (Ghent, Belgium), 29.6.-3.7.2020
eISBN: 978-1-7281-5684-2
Julkaisuvuosi: 2020
Artikkelin sivunumerot: 282-286
Kustantaja: IEEE
Julkaisumaa: Yhdysvallat (USA)
Julkaisun kieli: englanti
DOI: https://doi.org/10.1109/NetSoft48620.2020.9165383
Julkaisun avoin saatavuus: Ei avoin
Julkaisukanavan avoin saatavuus:
Julkaisu on rinnakkaistallennettu (JYX): https://jyx.jyu.fi/handle/123456789/93737
Tiivistelmä
With the recent progress in the development of low-budget sensors and machine-to-machine communication, the Internet-of-Things has attracted considerable attention. Unfortunately, many of today's smart devices are rushed to market with little consideration for basic security and privacy protection making them easy targets for various attacks. Unfortunately, organizations and network providers use mostly manual workflows to address malware-related incidents and therefore they are able to prevent neither attack damage nor potential attacks in the future. Thus, there is a need for a defense system that would not only detect an intrusion on time, but also would make the most optimal real-time crisis-action decision on how the network security policy should be modified in order to mitigate the threat. In this study, we are aiming to reach this goal relying on advanced technologies that have recently emerged in the area of cloud computing and network virtualization. We are proposing an intelligent defense system implemented as a reinforcement machine learning agent that processes current network state and takes a set of necessary actions in form of software-defined networking flows to redirect certain network traffic to virtual appliances. We also implement a proof-of-concept of the system and evaluate a couple of state-of-art reinforcement learning algorithms for mitigating three basic network attacks against a small realistic network environment.
YSO-asiasanat: tietoverkot; turvallisuus; tietoturva; verkkohyökkäykset; anomaliat; koneoppiminen
Vapaat asiasanat: network security; machine learning; reinforcement learning; software-defined networking; network function virtualization
Liittyvät organisaatiot
OKM-raportointi: Kyllä
Raportointivuosi: 2020
JUFO-taso: 1