Distributed denial-of-service attack mitigation in network functions virtualization-based 5G networks using management and orchestration

dc.authorid Kara, Ali/0000-0002-9739-7619
dc.authorid Maiga, Bamoye/0000-0003-4219-6630
dc.authorscopusid 57222958869
dc.authorscopusid 51763497600
dc.authorscopusid 57222965218
dc.authorscopusid 7102824862
dc.authorwosid Kara, Ali/R-8038-2019
dc.contributor.author Koksal, Sarp
dc.contributor.author Dalveren, Yaser
dc.contributor.author Maiga, Bamoye
dc.contributor.author Kara, Ali
dc.contributor.other Department of Electrical & Electronics Engineering
dc.date.accessioned 2024-07-05T15:21:21Z
dc.date.available 2024-07-05T15:21:21Z
dc.date.issued 2021
dc.department Atılım University en_US
dc.department-temp [Koksal, Sarp; Maiga, Bamoye; Kara, Ali] Atilim Univ, Dept Elect & Elect Engn, Ankara, Turkey; [Koksal, Sarp] Nokia, Network Infrastruct, Ankara, Turkey; [Dalveren, Yaser] Atilim Univ, Dept Avion, Ankara, Turkey; [Kara, Ali] Gazi Univ, Dept Elect & Elect Engn, Ankara, Turkey en_US
dc.description Kara, Ali/0000-0002-9739-7619; Maiga, Bamoye/0000-0003-4219-6630 en_US
dc.description.abstract The fifth generation (5G) technology is expected to allow connectivity to billions of devices, known as Internet of Things (IoT). However, IoT devices will inevitably be the main target of various cyberattack types. The most common one is known as distributed denial-of-service (DDoS) attack. In order to mitigate such attacks, network functions virtualization (NFV) has a great potential to provide the benefit of elasticity and low-cost solutions for protecting 5G networks. In this context, this study proposes a new mechanism developed to mitigate DDoS attacks in 5G NFV networks. The proposed mechanism utilizes intrusion prevention system's (IPS) virtual machines (VMs) to intercept the queries. Based on the volume of DDoS traffic, IPS's VMs are dynamically deployed by means of management and orchestration (MANO) in order to balance the load. To evaluate the effectiveness of the mechanism, experiments are conducted in a real 5G NFV environment built by using 5G NFV environment tools. To our best knowledge, this is the first time that NFV-based mechanism is experimentally tested in a real 5G NFV environment for mitigating DDoS attacks in 5G networks. The experimental results verify that the proposed mechanism can mitigate DDoS attacks effectively. en_US
dc.identifier.citationcount 1
dc.identifier.doi 10.1002/dac.4825
dc.identifier.issn 1074-5351
dc.identifier.issn 1099-1131
dc.identifier.issue 9 en_US
dc.identifier.scopus 2-s2.0-85104232812
dc.identifier.scopusquality Q2
dc.identifier.uri https://doi.org/10.1002/dac.4825
dc.identifier.uri https://hdl.handle.net/20.500.14411/2066
dc.identifier.volume 34 en_US
dc.identifier.wos WOS:000639789700001
dc.identifier.wosquality Q3
dc.institutionauthor Dalveren, Yaser
dc.institutionauthor Kara, Ali
dc.language.iso en en_US
dc.publisher Wiley en_US
dc.relation.publicationcategory Makale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanı en_US
dc.rights info:eu-repo/semantics/closedAccess en_US
dc.scopus.citedbyCount 13
dc.subject 5G security en_US
dc.subject DDoS en_US
dc.subject MANO en_US
dc.subject NFV en_US
dc.subject OpenStack en_US
dc.title Distributed denial-of-service attack mitigation in network functions virtualization-based 5G networks using management and orchestration en_US
dc.type Article en_US
dc.wos.citedbyCount 5
dspace.entity.type Publication
relation.isAuthorOfPublication 55e082ac-14c0-46a6-b8fa-50c5e40b59c8
relation.isAuthorOfPublication be728837-c599-49c1-8e8d-81b90219bb15
relation.isAuthorOfPublication.latestForDiscovery 55e082ac-14c0-46a6-b8fa-50c5e40b59c8
relation.isOrgUnitOfPublication c3c9b34a-b165-4cd6-8959-dc25e91e206b
relation.isOrgUnitOfPublication.latestForDiscovery c3c9b34a-b165-4cd6-8959-dc25e91e206b

Files

Collections